SB2018011923 - Fedora 27 update for kernel
Published: January 19, 2018 Updated: April 24, 2025
Security Bulletin ID
SB2018011923
Severity
Medium
Patch available
YES
Number of vulnerabilities
3
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Heap out-of-bounds write (CVE-ID: CVE-2018-5332)
The vulnerability allows a local attacker to cause DoS condition on the target system.The weakness exists in the rds_message_alloc_sgs() function due to improper validation of DMA page allocation values. A local attacker can trigger a heap-based out-of-bounds write and cause the system to crash.
2) Null pointer dereference (CVE-ID: CVE-2018-5333)
The vulnerability allows a remote attacker to cause DoS condition on the target system.The weakness exists in the rds_cmsg_atomic function due to insufficient handling of user-supplied input. A remote attacker can send a specially crafted HTTP request, trigger NULL pointer dereference and cause the system to crash.
3) Use-after-free error (CVE-ID: CVE-2018-5344)
The vulnerability allows a local attacker to cause a DoS condition on the target system.The weakness exists in the drivers/block/loop.c mishandles lo_release serialization due to use-after-free error. A local attacker can trigger memory corruption and cause the service to crash or execute arbitrary code.
Successful exploitation of the vulnerability may result in system compromise.
Remediation
Install update from vendor's website.