CVE-2018-10880 Ubuntu Security Notification for Linux, Linux-aws, Linux-kvm, Linux-raspi2, Linux-snapdragon Vulnerabilities (USN-3821-1)

漏洞类别:Ubuntu

漏洞等级: 

漏洞信息

It was discovered that the ext4 filesystem implementation in the Linux kernel did not properly ensure that xattr information remained in inode bodies.

It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability.

It was discovered that the f2fs filesystem implementation in the Linux kernel did not properly validate metadata.

It was and Po-Ning Tseng discovered that the btrfs filesystem implementation in the Linux kernel did not properly handle relocations in some situations.

It was discovered that the HFS+ filesystem implementation in the Linux kernel did not properly handle malformed catalog data in some situations.

it was discovered that the procfs file system implementation in the Linux kernel did not properly restrict the ability to inspect the kernel stack of an arbitrary task.

It was discovered that the KVM implementation in the Linux kernel on ARM 64bit processors did not properly handle some ioctls.

漏洞危害

An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (system crash). (CVE-2018-10880)

A local attacker could use this to cause a denial of service. (CVE-2018-13053)

An attacker could use this to construct a malicious f2fs image that, when mounted, could cause a denial of service (system crash). (CVE-2018-13096)

An attacker could use this to construct a malicious btrfs image that, when mounted, could cause a denial of service (system crash). (CVE-2018-14609)

An attacker could use this to construct a malicious HFS+ image that, when mounted, could cause a denial of service (system crash). (CVE-2018-14617)

A local attacker could use this to expose sensitive information. (CVE-2018-17972)

An attacker with the privilege to create KVM-based virtual machines could use this to cause a denial of service (host system crash) or execute arbitrary code in the host. (CVE-2018-18021)

解决方案

Refer to Ubuntu advisory USN-3821-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3821-1: 16.04 (Xenial) on src (linux-image-snapdragon)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-generic-lpae)

USN-3821-1: 16.04 (Xenial) on src (linux-image-powerpc-e500mc)

USN-3821-1: 16.04 (Xenial) on src (linux-image-powerpc64-emb)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-generic)

USN-3821-1: 16.04 (Xenial) on src (linux-image-powerpc64-smp)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-powerpc64-smp)

USN-3821-1: 16.04 (Xenial) on src (linux-image-aws)

USN-3821-1: 16.04 (Xenial) on src (linux-image-raspi2)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-1100-raspi2)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-lowlatency)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-1072-aws)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-1037-kvm)

USN-3821-1: 16.04 (Xenial) on src (linux-image-generic-lpae)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-powerpc-smp)

USN-3821-1: 16.04 (Xenial) on src (linux-image-lowlatency)

USN-3821-1: 16.04 (Xenial) on src (linux-image-generic)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-powerpc-e500mc)

USN-3821-1: 16.04 (Xenial) on src (linux-image-powerpc-smp)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-1104-snapdragon)

USN-3821-1: 16.04 (Xenial) on src (linux-image-4.4.0-139-powerpc64-emb)

USN-3821-1: 16.04 (Xenial) on src (linux-image-kvm)

Leave a Reply