Information disclosure in Linux Kernel



Risk Low
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2018-5953
CVE-2018-5995
CWE-ID CWE-200
Exploitation vector Local
Public exploit N/A
Vulnerable software
Linux kernel
Operating systems & Components / Operating system

Vendor Linux Foundation

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Information disclosure

EUVDB-ID: #VU14449

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-5953

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in the swiotlb_print_info() function, as defined in the lib/swiotlb.c source code file due to the printk function prints kernel-object address information. A local attacker can access the system and use a software IO TLB call to read the kernel log.

Mitigation

Update to version 4.14.15.

Vulnerable software versions

Linux kernel: 4.10.0 - 4.14.14

CPE2.3 External links

https://github.com/johnsonwangqize/cve-linux/blob/master/%20CVE-2018-5953.md


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Information disclosure

EUVDB-ID: #VU14450

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-5995

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: No

Description

The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in the pcpu_embed_first_chunk() function, as defined in the mm/percpu.c source code file due to the printk function prints kernel-object address information. A local attacker can access the system and use a a pages/cpu call to read the kernel log.

Mitigation

Update to version 4.14.15.

Vulnerable software versions

Linux kernel: 4.10.0 - 4.14.14

CPE2.3 External links

https://github.com/johnsonwangqize/cve-linux/blob/master/CVE-2018-5995.md


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###