CVE-2018-10938
27.08.2018, 13:29
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 4.0 |
| linux | linux_kernel | 4.0:rc1 |
| linux | linux_kernel | 4.0:rc2 |
| linux | linux_kernel | 4.0:rc3 |
| linux | linux_kernel | 4.0:rc4 |
| linux | linux_kernel | 4.0:rc5 |
| linux | linux_kernel | 4.0:rc6 |
| linux | linux_kernel | 4.0:rc7 |
| linux | linux_kernel | 4.1 |
| linux | linux_kernel | 4.1:rc1 |
| linux | linux_kernel | 4.1:rc2 |
| linux | linux_kernel | 4.1:rc3 |
| linux | linux_kernel | 4.1:rc4 |
| linux | linux_kernel | 4.1:rc5 |
| linux | linux_kernel | 4.1:rc6 |
| linux | linux_kernel | 4.1:rc7 |
| linux | linux_kernel | 4.1:rc8 |
| linux | linux_kernel | 4.2 |
| linux | linux_kernel | 4.2:rc1 |
| linux | linux_kernel | 4.2:rc2 |
| linux | linux_kernel | 4.2:rc3 |
| linux | linux_kernel | 4.2:rc4 |
| linux | linux_kernel | 4.2:rc5 |
| linux | linux_kernel | 4.2:rc6 |
| linux | linux_kernel | 4.2:rc7 |
| linux | linux_kernel | 4.2:rc8 |
| linux | linux_kernel | 4.3 |
| linux | linux_kernel | 4.3:rc1 |
| linux | linux_kernel | 4.3:rc2 |
| linux | linux_kernel | 4.3:rc3 |
| linux | linux_kernel | 4.3:rc4 |
| linux | linux_kernel | 4.3:rc5 |
| linux | linux_kernel | 4.3:rc6 |
| linux | linux_kernel | 4.3:rc7 |
| linux | linux_kernel | 4.4 |
| linux | linux_kernel | 4.4:rc1 |
| linux | linux_kernel | 4.4:rc2 |
| linux | linux_kernel | 4.4:rc3 |
| linux | linux_kernel | 4.4:rc4 |
| linux | linux_kernel | 4.4:rc5 |
| linux | linux_kernel | 4.4:rc6 |
| linux | linux_kernel | 4.4:rc7 |
| linux | linux_kernel | 4.4:rc8 |
| linux | linux_kernel | 4.5 |
| linux | linux_kernel | 4.5:rc1 |
| linux | linux_kernel | 4.5:rc2 |
| linux | linux_kernel | 4.5:rc3 |
| linux | linux_kernel | 4.5:rc4 |
| linux | linux_kernel | 4.5:rc5 |
| linux | linux_kernel | 4.5:rc6 |
| linux | linux_kernel | 4.5:rc7 |
| linux | linux_kernel | 4.6 |
| linux | linux_kernel | 4.6:rc1 |
| linux | linux_kernel | 4.6:rc2 |
| linux | linux_kernel | 4.6:rc3 |
| linux | linux_kernel | 4.6:rc4 |
| linux | linux_kernel | 4.6:rc5 |
| linux | linux_kernel | 4.6:rc6 |
| linux | linux_kernel | 4.6:rc7 |
| linux | linux_kernel | 4.7 |
| linux | linux_kernel | 4.7:rc1 |
| linux | linux_kernel | 4.7:rc2 |
| linux | linux_kernel | 4.7:rc3 |
| linux | linux_kernel | 4.7:rc4 |
| linux | linux_kernel | 4.7:rc5 |
| linux | linux_kernel | 4.7:rc6 |
| linux | linux_kernel | 4.7:rc7 |
| linux | linux_kernel | 4.8 |
| linux | linux_kernel | 4.8:rc1 |
| linux | linux_kernel | 4.8:rc2 |
| linux | linux_kernel | 4.8:rc3 |
| linux | linux_kernel | 4.8:rc4 |
| linux | linux_kernel | 4.8:rc5 |
| linux | linux_kernel | 4.8:rc6 |
| linux | linux_kernel | 4.8:rc7 |
| linux | linux_kernel | 4.8:rc8 |
| linux | linux_kernel | 4.9 |
| linux | linux_kernel | 4.9:rc1 |
| linux | linux_kernel | 4.9:rc2 |
| linux | linux_kernel | 4.9:rc3 |
| linux | linux_kernel | 4.9:rc4 |
| linux | linux_kernel | 4.9:rc5 |
| linux | linux_kernel | 4.9:rc6 |
| linux | linux_kernel | 4.9:rc7 |
| linux | linux_kernel | 4.9:rc8 |
| linux | linux_kernel | 4.10 |
| linux | linux_kernel | 4.10:rc1 |
| linux | linux_kernel | 4.10:rc2 |
| linux | linux_kernel | 4.10:rc3 |
| linux | linux_kernel | 4.10:rc4 |
| linux | linux_kernel | 4.10:rc5 |
| linux | linux_kernel | 4.10:rc6 |
| linux | linux_kernel | 4.10:rc7 |
| linux | linux_kernel | 4.10:rc8 |
| linux | linux_kernel | 4.11 |
| linux | linux_kernel | 4.11:rc1 |
| linux | linux_kernel | 4.11:rc2 |
| linux | linux_kernel | 4.11:rc3 |
| linux | linux_kernel | 4.11:rc4 |
| linux | linux_kernel | 4.11:rc5 |
| linux | linux_kernel | 4.11:rc6 |
| linux | linux_kernel | 4.11:rc7 |
| linux | linux_kernel | 4.11:rc8 |
| linux | linux_kernel | 4.12 |
| linux | linux_kernel | 4.12:rc1 |
| linux | linux_kernel | 4.12:rc2 |
| linux | linux_kernel | 4.12:rc3 |
| linux | linux_kernel | 4.12:rc4 |
| linux | linux_kernel | 4.12:rc5 |
| linux | linux_kernel | 4.12:rc6 |
| linux | linux_kernel | 4.12:rc7 |
| linux | linux_kernel | 4.13:rc1 |
| linux | linux_kernel | 4.13:rc2 |
| linux | linux_kernel | 4.13:rc3 |
| linux | linux_kernel | 4.13:rc4 |
| canonical | ubuntu_linux | 14.04 |
| canonical | ubuntu_linux | 16.04 |
| debian | debian_linux | 9.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||
| linux-aws |
| ||||||||
| linux-azure |
| ||||||||
| linux-azure-edge |
| ||||||||
| linux-euclid |
| ||||||||
| linux-flo |
| ||||||||
| linux-gcp |
| ||||||||
| linux-gke |
| ||||||||
| linux-goldfish |
| ||||||||
| linux-grouper |
| ||||||||
| linux-hwe |
| ||||||||
| linux-hwe-edge |
| ||||||||
| linux-kvm |
| ||||||||
| linux-lts-trusty |
| ||||||||
| linux-lts-utopic |
| ||||||||
| linux-lts-vivid |
| ||||||||
| linux-lts-wily |
| ||||||||
| linux-lts-xenial |
| ||||||||
| linux-maguro |
| ||||||||
| linux-mako |
| ||||||||
| linux-manta |
| ||||||||
| linux-oem |
| ||||||||
| linux-raspi2 |
| ||||||||
| linux-snapdragon |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| kernel-azure |
| ||||||||||||||||||||
| kernel-azure-base |
| ||||||||||||||||||||
| kernel-default |
| ||||||||||||||||||||
| kernel-default-base |
| ||||||||||||||||||||
| kernel-default-man |
| ||||||||||||||||||||
| kernel-docs |
| ||||||||||||||||||||
| kernel-macros |
| ||||||||||||||||||||
| kernel-obs-build |
| ||||||||||||||||||||
| kernel-source |
| ||||||||||||||||||||
| kernel-source-azure |
| ||||||||||||||||||||
| kernel-syms |
| ||||||||||||||||||||
| kernel-syms-azure |
| ||||||||||||||||||||
| kernel-vanilla-base |
| ||||||||||||||||||||
| kernel-zfcpdump |
| ||||||||||||||||||||
| kgraft-patch-4_4_103-92_53-default-9 |
| ||||||||||||||||||||
| kgraft-patch-4_4_103-92_56-default-9 |
| ||||||||||||||||||||
| kgraft-patch-4_4_114-92_64-default-7 |
| ||||||||||||||||||||
| kgraft-patch-4_4_114-92_67-default-7 |
| ||||||||||||||||||||
| kgraft-patch-4_4_120-92_70-default-6 |
| ||||||||||||||||||||
| kgraft-patch-4_4_121-92_73-default-5 |
| ||||||||||||||||||||
| kgraft-patch-4_4_121-92_80-default-5 |
| ||||||||||||||||||||
| kgraft-patch-4_4_121-92_85-default-3 |
| ||||||||||||||||||||
| kgraft-patch-4_4_121-92_92-default-3 |
| ||||||||||||||||||||
| kgraft-patch-4_4_121-92_95-default-1 |
| ||||||||||||||||||||
| kgraft-patch-4_4_74-92_38-default-12 |
| ||||||||||||||||||||
| kgraft-patch-4_4_90-92_45-default-10 |
| ||||||||||||||||||||
| kgraft-patch-4_4_90-92_50-default-10 |
| ||||||||||||||||||||
| lttng-modules |
|
Common Weakness Enumeration
References