RHSA-2018:0654
Advisory lineage Upstream: 14 Downstream: 0
Published: 16 Sept 2024, 00:48
Last modified:29 May 2026, 10:01
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.0 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Sept 2024, 00:48
Published
Vulnerability first disclosed
29 May 2026, 10:01
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Systems
- redhat•kernel
< 0:4.14.0-49.el7a
- redhat•kernel-abi-whitelists
< 0:4.14.0-49.el7a
- redhat•kernel-alt
< 0:4.14.0-49.el7a
- redhat•kernel-bootwrapper
< 0:4.14.0-49.el7a
- redhat•kernel-debug
< 0:4.14.0-49.el7a
- redhat•kernel-debug-debuginfo
< 0:4.14.0-49.el7a
- redhat•kernel-debug-devel
< 0:4.14.0-49.el7a
- redhat•kernel-debuginfo
< 0:4.14.0-49.el7a
- redhat•kernel-debuginfo-common-aarch64
< 0:4.14.0-49.el7a
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.14.0-49.el7a
- redhat•kernel-debuginfo-common-s390x
< 0:4.14.0-49.el7a
- redhat•kernel-devel
< 0:4.14.0-49.el7a
- redhat•kernel-doc
< 0:4.14.0-49.el7a
- redhat•kernel-headers
< 0:4.14.0-49.el7a
- redhat•kernel-kdump
< 0:4.14.0-49.el7a
- redhat•kernel-kdump-debuginfo
< 0:4.14.0-49.el7a
- redhat•kernel-kdump-devel
< 0:4.14.0-49.el7a
- redhat•kernel-tools
< 0:4.14.0-49.el7a
- redhat•kernel-tools-debuginfo
< 0:4.14.0-49.el7a
- redhat•kernel-tools-libs
< 0:4.14.0-49.el7a
- redhat•kernel-tools-libs-devel
< 0:4.14.0-49.el7a
- redhat•perf
< 0:4.14.0-49.el7a
- redhat•perf-debuginfo
< 0:4.14.0-49.el7a
- redhat•python-perf
< 0:4.14.0-49.el7a
- redhat•python-perf-debuginfo
< 0:4.14.0-49.el7a
References (68)
- https://access.redhat.com/errata/RHSA-2018:0654
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.5_Release_Notes/index.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1473209
- https://bugzilla.redhat.com/show_bug.cgi?id=1495089
- https://bugzilla.redhat.com/show_bug.cgi?id=1498016
- https://bugzilla.redhat.com/show_bug.cgi?id=1498067
- https://bugzilla.redhat.com/show_bug.cgi?id=1501794
- https://bugzilla.redhat.com/show_bug.cgi?id=1519160
- https://bugzilla.redhat.com/show_bug.cgi?id=1519778
- https://bugzilla.redhat.com/show_bug.cgi?id=1519780
- https://bugzilla.redhat.com/show_bug.cgi?id=1519781
- https://bugzilla.redhat.com/show_bug.cgi?id=1525762
- https://bugzilla.redhat.com/show_bug.cgi?id=1525768
- https://bugzilla.redhat.com/show_bug.cgi?id=1531174
- https://bugzilla.redhat.com/show_bug.cgi?id=1535315
- https://bugzilla.redhat.com/show_bug.cgi?id=1544612
- https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0654.json
- https://access.redhat.com/security/cve/CVE-2017-5753
- https://www.cve.org/CVERecord?id=CVE-2017-5753
- https://nvd.nist.gov/vuln/detail/CVE-2017-5753
- https://access.redhat.com/security/vulnerabilities/speculativeexecution
- https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html
- https://meltdownattack.com
- https://spectreattack.com/
- https://access.redhat.com/security/cve/CVE-2017-11473
- https://www.cve.org/CVERecord?id=CVE-2017-11473
- https://nvd.nist.gov/vuln/detail/CVE-2017-11473
- https://access.redhat.com/security/cve/CVE-2017-12190
- https://www.cve.org/CVERecord?id=CVE-2017-12190
- https://nvd.nist.gov/vuln/detail/CVE-2017-12190
- https://access.redhat.com/security/cve/CVE-2017-12192
- https://bugzilla.redhat.com/show_bug.cgi?id=1493435
- https://www.cve.org/CVERecord?id=CVE-2017-12192
- https://nvd.nist.gov/vuln/detail/CVE-2017-12192
- http://seclists.org/oss-sec/2017/q4/63
- https://access.redhat.com/security/cve/CVE-2017-15129
- https://www.cve.org/CVERecord?id=CVE-2017-15129
- https://nvd.nist.gov/vuln/detail/CVE-2017-15129
- https://access.redhat.com/security/cve/CVE-2017-15299
- https://www.cve.org/CVERecord?id=CVE-2017-15299
- https://nvd.nist.gov/vuln/detail/CVE-2017-15299
- https://access.redhat.com/security/cve/CVE-2017-15306
- https://bugzilla.redhat.com/show_bug.cgi?id=1510399
- https://www.cve.org/CVERecord?id=CVE-2017-15306
- https://nvd.nist.gov/vuln/detail/CVE-2017-15306
- https://access.redhat.com/security/cve/CVE-2017-16939
- https://bugzilla.redhat.com/show_bug.cgi?id=1517220
- https://www.cve.org/CVERecord?id=CVE-2017-16939
- https://nvd.nist.gov/vuln/detail/CVE-2017-16939
- https://access.redhat.com/security/cve/CVE-2017-17448
- https://www.cve.org/CVERecord?id=CVE-2017-17448
- https://nvd.nist.gov/vuln/detail/CVE-2017-17448
- https://access.redhat.com/security/cve/CVE-2017-17449
- https://www.cve.org/CVERecord?id=CVE-2017-17449
- https://nvd.nist.gov/vuln/detail/CVE-2017-17449
- https://access.redhat.com/security/cve/CVE-2017-1000255
- https://www.cve.org/CVERecord?id=CVE-2017-1000255
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000255
- https://access.redhat.com/security/cve/CVE-2017-1000410
- https://www.cve.org/CVERecord?id=CVE-2017-1000410
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000410
- https://access.redhat.com/security/cve/CVE-2018-6927
- https://www.cve.org/CVERecord?id=CVE-2018-6927
- https://nvd.nist.gov/vuln/detail/CVE-2018-6927
- https://access.redhat.com/security/cve/CVE-2018-1000004
- https://www.cve.org/CVERecord?id=CVE-2018-1000004
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000004