CVE-2018-13405

The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
≤ 3.16
debiandebian_linux
8.0
debiandebian_linux
9.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
redhatmrg_realtime
2.0
redhatvirtualization
4.0
redhatenterprise_linux_aus
7.4
redhatenterprise_linux_desktop
6.0
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_eus
7.4
redhatenterprise_linux_eus
7.5
redhatenterprise_linux_server
6.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_server_aus
6.6
redhatenterprise_linux_server_aus
7.2
redhatenterprise_linux_server_aus
7.3
redhatenterprise_linux_server_tus
7.2
redhatenterprise_linux_server_tus
7.3
redhatenterprise_linux_server_tus
7.4
redhatenterprise_linux_workstation
6.0
redhatenterprise_linux_workstation
7.0
f5big-ip_access_policy_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_access_policy_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_access_policy_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_access_policy_manager
15.1.0
f5big-ip_access_policy_manager
16.0.0
f5big-ip_advanced_firewall_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_advanced_firewall_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_advanced_firewall_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_advanced_firewall_manager
15.1.0
f5big-ip_advanced_firewall_manager
16.0.0
f5big-ip_analytics
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_analytics
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_analytics
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_analytics
15.1.0
f5big-ip_analytics
16.0.0
f5big-ip_application_acceleration_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_application_acceleration_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_application_acceleration_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_application_acceleration_manager
15.1.0
f5big-ip_application_acceleration_manager
16.0.0
f5big-ip_application_security_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_application_security_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_application_security_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_application_security_manager
15.1.0
f5big-ip_application_security_manager
16.0.0
f5big-ip_domain_name_system
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_domain_name_system
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_domain_name_system
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_domain_name_system
15.1.0
f5big-ip_domain_name_system
16.0.0
f5big-ip_edge_gateway
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_edge_gateway
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_edge_gateway
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_edge_gateway
15.1.0
f5big-ip_edge_gateway
16.0.0
f5big-ip_fraud_protection_service
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_fraud_protection_service
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_fraud_protection_service
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_fraud_protection_service
15.1.0
f5big-ip_fraud_protection_service
16.0.0
f5big-ip_global_traffic_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_global_traffic_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_global_traffic_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_global_traffic_manager
15.1.0
f5big-ip_global_traffic_manager
16.0.0
f5big-ip_link_controller
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_link_controller
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_link_controller
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_link_controller
15.1.0
f5big-ip_link_controller
16.0.0
f5big-ip_local_traffic_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_local_traffic_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_local_traffic_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_local_traffic_manager
15.1.0
f5big-ip_local_traffic_manager
16.0.0
f5big-ip_policy_enforcement_manager
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_policy_enforcement_manager
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_policy_enforcement_manager
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_policy_enforcement_manager
15.1.0
f5big-ip_policy_enforcement_manager
16.0.0
f5big-ip_webaccelerator
13.0.0 ≤
𝑥
< 13.1.3.5
f5big-ip_webaccelerator
14.0.0 ≤
𝑥
< 14.1.3.1
f5big-ip_webaccelerator
15.0.0 ≤
𝑥
< 15.0.1.4
f5big-ip_webaccelerator
15.1.0
f5big-ip_webaccelerator
16.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
artful
ignored
bionic
Fixed 4.15.0-33.36
released
cosmic
not-affected
trusty
Fixed 3.13.0-157.207
released
xenial
Fixed 4.4.0-134.160
released
linux-aws
artful
dne
bionic
Fixed 4.15.0-1020.20
released
cosmic
not-affected
trusty
Fixed 4.4.0-1028.31
released
xenial
Fixed 4.4.0-1066.76
released
linux-azure
artful
dne
bionic
Fixed 4.15.0-1022.23
released
cosmic
not-affected
trusty
not-affected
xenial
Fixed 4.15.0-1022.22~16.04.1
released
linux-azure-edge
artful
dne
bionic
not-affected
cosmic
dne
trusty
dne
xenial
Fixed 4.15.0-1022.23
released
linux-euclid
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
ignored
linux-flo
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
ignored
linux-gcp
artful
dne
bionic
Fixed 4.15.0-1018.19
released
cosmic
not-affected
trusty
dne
xenial
Fixed 4.15.0-1018.19~16.04.2
released
linux-gke
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
ignored
linux-goldfish
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
ignored
linux-grouper
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-hwe
artful
dne
bionic
not-affected
cosmic
dne
trusty
dne
xenial
Fixed 4.15.0-33.36~16.04.1
released
linux-hwe-edge
artful
dne
bionic
not-affected
cosmic
dne
trusty
dne
xenial
Fixed 4.15.0-33.36~16.04.1
released
linux-kvm
artful
dne
bionic
Fixed 4.15.0-1020.20
released
cosmic
not-affected
trusty
dne
xenial
Fixed 4.4.0-1032.38
released
linux-lts-trusty
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-lts-utopic
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-lts-vivid
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-lts-wily
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-lts-xenial
artful
dne
bionic
dne
cosmic
dne
trusty
Fixed 4.4.0-134.160~14.04.1
released
xenial
dne
linux-maguro
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-mako
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
ignored
linux-manta
artful
dne
bionic
dne
cosmic
dne
trusty
dne
xenial
dne
linux-oem
artful
dne
bionic
Fixed 4.15.0-1017.20
released
cosmic
not-affected
trusty
dne
xenial
ignored
linux-raspi2
artful
ignored
bionic
Fixed 4.15.0-1021.23
released
cosmic
not-affected
trusty
dne
xenial
Fixed 4.4.0-1095.103
released
linux-snapdragon
artful
ignored
bionic
not-affected
cosmic
dne
trusty
dne
xenial
Fixed 4.4.0-1099.104
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
kernel-azure
suse enterprise sap 15
4.12.14-5.8.1
fixed
suse enterprise server 15
4.12.14-5.8.1
fixed
kernel-azure-base
suse enterprise sap 15
4.12.14-5.8.1
fixed
suse enterprise sap 15 SP2
4.12.14-8.30.1
fixed
suse enterprise sap 15 SP3
4.12.14-8.58.1
fixed
suse enterprise server 15
4.12.14-5.8.1
fixed
suse enterprise server 15 SP2
4.12.14-8.30.1
fixed
suse enterprise server 15 SP3
4.12.14-8.58.1
fixed
kernel-default
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-default-base
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-default-kgraft
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
kernel-default-man
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-docs
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-ec2
suse enterprise sap 12
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP3
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP4
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP5
3.12.74-60.64.99.1
fixed
suse enterprise server 12
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP3
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP4
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP5
3.12.74-60.64.99.1
fixed
kernel-ec2-extra
suse enterprise sap 12
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP3
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP4
3.12.74-60.64.99.1
fixed
suse enterprise sap 12 SP5
3.12.74-60.64.99.1
fixed
suse enterprise server 12
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP3
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP4
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP5
3.12.74-60.64.99.1
fixed
kernel-macros
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-obs-build
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-source
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-source-azure
suse enterprise sap 15
4.12.14-5.8.1
fixed
suse enterprise sap 15 SP2
4.12.14-5.8.1
fixed
suse enterprise sap 15 SP3
4.12.14-5.8.1
fixed
suse enterprise server 15
4.12.14-5.8.1
fixed
suse enterprise server 15 SP2
4.12.14-5.8.1
fixed
suse enterprise server 15 SP3
4.12.14-5.8.1
fixed
kernel-syms
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
suse enterprise server 12 SP2
4.4.121-92.92.1
fixed
suse enterprise server 12 SP3
4.4.180-94.150.1
fixed
suse enterprise server 12 SP4
4.12.14-95.83.2
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kernel-syms-azure
suse enterprise sap 15
4.12.14-5.8.1
fixed
suse enterprise server 15
4.12.14-5.8.1
fixed
kernel-vanilla-base
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
kernel-xen
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
kernel-xen-base
suse enterprise server 12
3.12.61-52.141.1
fixed
suse enterprise server 12 SP1
3.12.74-60.64.99.1
fixed
kernel-zfcpdump
suse enterprise desktop 15
4.12.14-25.3.1
fixed
suse enterprise desktop 15 SP1
4.12.14-195.1
fixed
suse enterprise sap 15
4.12.14-25.3.1
fixed
suse enterprise sap 15 SP1
4.12.14-195.1
fixed
suse enterprise server 15
4.12.14-25.3.1
fixed
suse enterprise server 15 SP1
4.12.14-195.1
fixed
kgraft-patch-3_12_61-52_141-default-1
suse enterprise server 12
1.5.1
fixed
kgraft-patch-3_12_61-52_141-xen-1
suse enterprise server 12
1.5.1
fixed
kgraft-patch-3_12_74-60_64_99-default-1
suse enterprise server 12 SP1
2.3.1
fixed
kgraft-patch-3_12_74-60_64_99-xen-1
suse enterprise server 12 SP1
2.3.1
fixed
kgraft-patch-4_4_121-92_92-default-1
suse enterprise server 12 SP2
3.7.1
fixed
kgraft-patch-4_4_180-94_150-default-1
suse enterprise server 12 SP3
4.3.1
fixed
lttng-modules
suse enterprise server 12
2.4.1-16.6.1
fixed
suse enterprise server 12 SP1
2.7.0-4.2.1
fixed
suse enterprise server 12 SP2
2.7.1-9.4.1
fixed
reiserfs-kmp-default
suse enterprise server 15 SP1
4.12.14-197.102.2
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
bpftool
RHEL 7
0:3.10.0-957.el7
fixed
kernel
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-abi-whitelists
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-bootwrapper
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-debug
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-debug-devel
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-devel
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-doc
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-firmware
RHEL 6
0:2.6.32-754.12.1.el6
fixed
kernel-headers
RHEL 6
0:2.6.32-754.12.1.el6
fixed
kernel-kdump
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-kdump-devel
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
kernel-rt
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-debug
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-debug-devel
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-debug-kvm
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-devel
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-doc
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-kvm
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-trace
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-trace-devel
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-rt-trace-kvm
RHEL 7
0:3.10.0-957.rt56.910.el7
fixed
kernel-tools
RHEL 7
0:3.10.0-957.el7
fixed
kernel-tools-libs
RHEL 7
0:3.10.0-957.el7
fixed
kernel-tools-libs-devel
RHEL 7
0:3.10.0-957.el7
fixed
perf
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
python-perf
RHEL 6
0:2.6.32-754.12.1.el6
fixed
RHEL 7
0:3.10.0-957.el7
fixed
Common Weakness Enumeration
References
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7
http://openwall.com/lists/oss-security/2018/07/13/2
http://www.securityfocus.com/bid/106503
https://access.redhat.com/errata/RHSA-2018:2948
https://access.redhat.com/errata/RHSA-2018:3083
https://access.redhat.com/errata/RHSA-2018:3096
https://access.redhat.com/errata/RHSA-2019:0717
https://access.redhat.com/errata/RHSA-2019:2476
https://access.redhat.com/errata/RHSA-2019:2566
https://access.redhat.com/errata/RHSA-2019:2696
https://access.redhat.com/errata/RHSA-2019:2730
https://access.redhat.com/errata/RHSA-2019:4159
https://access.redhat.com/errata/RHSA-2019:4164
https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=0b3369840cd61c23e2b9241093737b4c395cb406
https://github.com/torvalds/linux/commit/0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRBNBX73SAFKQWBOX76SLMWPTKJPVGEJ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTKKIAUMR5FAYLZ7HLEPOXMKAAE3BYBQ/
https://support.f5.com/csp/article/K00854051
https://twitter.com/grsecurity/status/1015082951204327425
https://usn.ubuntu.com/3752-1/
https://usn.ubuntu.com/3752-2/
https://usn.ubuntu.com/3752-3/
https://usn.ubuntu.com/3753-1/
https://usn.ubuntu.com/3753-2/
https://usn.ubuntu.com/3754-1/
https://www.debian.org/security/2018/dsa-4266
https://www.exploit-db.com/exploits/45033/
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7
http://openwall.com/lists/oss-security/2018/07/13/2
http://www.securityfocus.com/bid/106503
https://access.redhat.com/errata/RHSA-2018:2948
https://access.redhat.com/errata/RHSA-2018:3083
https://access.redhat.com/errata/RHSA-2018:3096
https://access.redhat.com/errata/RHSA-2019:0717
https://access.redhat.com/errata/RHSA-2019:2476
https://access.redhat.com/errata/RHSA-2019:2566
https://access.redhat.com/errata/RHSA-2019:2696
https://access.redhat.com/errata/RHSA-2019:2730
https://access.redhat.com/errata/RHSA-2019:4159
https://access.redhat.com/errata/RHSA-2019:4164
https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=0b3369840cd61c23e2b9241093737b4c395cb406
https://github.com/torvalds/linux/commit/0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7
https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HRBNBX73SAFKQWBOX76SLMWPTKJPVGEJ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MTKKIAUMR5FAYLZ7HLEPOXMKAAE3BYBQ/
https://support.f5.com/csp/article/K00854051
https://twitter.com/grsecurity/status/1015082951204327425
https://usn.ubuntu.com/3752-1/
https://usn.ubuntu.com/3752-2/
https://usn.ubuntu.com/3752-3/
https://usn.ubuntu.com/3753-1/
https://usn.ubuntu.com/3753-2/
https://usn.ubuntu.com/3754-1/
https://www.debian.org/security/2018/dsa-4266
https://www.exploit-db.com/exploits/45033/