RHSA-2018:2948
Advisory lineage Upstream: 42 Downstream: 0
Published: 29 Sept 2024, 17:19
Last modified:30 May 2026, 10:02
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.0 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
29 Sept 2024, 17:19
Published
Vulnerability first disclosed
30 May 2026, 10:02
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: kernel-alt security, bug fix, and enhancement update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Systems
- redhat•kernel
< 0:4.14.0-115.el7a
- redhat•kernel-abi-whitelists
< 0:4.14.0-115.el7a
- redhat•kernel-alt
< 0:4.14.0-115.el7a
- redhat•kernel-bootwrapper
< 0:4.14.0-115.el7a
- redhat•kernel-debug
< 0:4.14.0-115.el7a
- redhat•kernel-debug-debuginfo
< 0:4.14.0-115.el7a
- redhat•kernel-debug-devel
< 0:4.14.0-115.el7a
- redhat•kernel-debuginfo
< 0:4.14.0-115.el7a
- redhat•kernel-debuginfo-common-ppc64le
< 0:4.14.0-115.el7a
- redhat•kernel-devel
< 0:4.14.0-115.el7a
- redhat•kernel-doc
< 0:4.14.0-115.el7a
- redhat•kernel-headers
< 0:4.14.0-115.el7a
- redhat•kernel-tools
< 0:4.14.0-115.el7a
- redhat•kernel-tools-debuginfo
< 0:4.14.0-115.el7a
- redhat•kernel-tools-libs
< 0:4.14.0-115.el7a
- redhat•kernel-tools-libs-devel
< 0:4.14.0-115.el7a
- redhat•perf
< 0:4.14.0-115.el7a
- redhat•perf-debuginfo
< 0:4.14.0-115.el7a
- redhat•python-perf
< 0:4.14.0-115.el7a
- redhat•python-perf-debuginfo
< 0:4.14.0-115.el7a
References (186)
- https://access.redhat.com/errata/RHSA-2018:2948
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/articles/3553061
- https://access.redhat.com/security/vulnerabilities/ssbd
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.6_release_notes/index
- https://access.redhat.com/articles/3658021
- https://bugzilla.redhat.com/show_bug.cgi?id=1516257
- https://bugzilla.redhat.com/show_bug.cgi?id=1528312
- https://bugzilla.redhat.com/show_bug.cgi?id=1528323
- https://bugzilla.redhat.com/show_bug.cgi?id=1533909
- https://bugzilla.redhat.com/show_bug.cgi?id=1539508
- https://bugzilla.redhat.com/show_bug.cgi?id=1539706
- https://bugzilla.redhat.com/show_bug.cgi?id=1541846
- https://bugzilla.redhat.com/show_bug.cgi?id=1547824
- https://bugzilla.redhat.com/show_bug.cgi?id=1548412
- https://bugzilla.redhat.com/show_bug.cgi?id=1550142
- https://bugzilla.redhat.com/show_bug.cgi?id=1551051
- https://bugzilla.redhat.com/show_bug.cgi?id=1551565
- https://bugzilla.redhat.com/show_bug.cgi?id=1552048
- https://bugzilla.redhat.com/show_bug.cgi?id=1553361
- https://bugzilla.redhat.com/show_bug.cgi?id=1560777
- https://bugzilla.redhat.com/show_bug.cgi?id=1560788
- https://bugzilla.redhat.com/show_bug.cgi?id=1560793
- https://bugzilla.redhat.com/show_bug.cgi?id=1566890
- https://bugzilla.redhat.com/show_bug.cgi?id=1568744
- https://bugzilla.redhat.com/show_bug.cgi?id=1571062
- https://bugzilla.redhat.com/show_bug.cgi?id=1571623
- https://bugzilla.redhat.com/show_bug.cgi?id=1573699
- https://bugzilla.redhat.com/show_bug.cgi?id=1575472
- https://bugzilla.redhat.com/show_bug.cgi?id=1577408
- https://bugzilla.redhat.com/show_bug.cgi?id=1583210
- https://bugzilla.redhat.com/show_bug.cgi?id=1589324
- https://bugzilla.redhat.com/show_bug.cgi?id=1590215
- https://bugzilla.redhat.com/show_bug.cgi?id=1590799
- https://bugzilla.redhat.com/show_bug.cgi?id=1596795
- https://bugzilla.redhat.com/show_bug.cgi?id=1596802
- https://bugzilla.redhat.com/show_bug.cgi?id=1596806
- https://bugzilla.redhat.com/show_bug.cgi?id=1596812
- https://bugzilla.redhat.com/show_bug.cgi?id=1596828
- https://bugzilla.redhat.com/show_bug.cgi?id=1596842
- https://bugzilla.redhat.com/show_bug.cgi?id=1596846
- https://bugzilla.redhat.com/show_bug.cgi?id=1599161
- https://bugzilla.redhat.com/show_bug.cgi?id=1601704
- https://bugzilla.redhat.com/show_bug.cgi?id=1609664
- https://bugzilla.redhat.com/show_bug.cgi?id=1610958
- https://bugzilla.redhat.com/show_bug.cgi?id=1622004
- https://bugzilla.redhat.com/show_bug.cgi?id=1623067
- https://bugzilla.redhat.com/show_bug.cgi?id=1629636
- https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2948.json
- https://access.redhat.com/security/cve/CVE-2017-13166
- https://www.cve.org/CVERecord?id=CVE-2017-13166
- https://nvd.nist.gov/vuln/detail/CVE-2017-13166
- https://access.redhat.com/security/cve/CVE-2017-16648
- https://www.cve.org/CVERecord?id=CVE-2017-16648
- https://nvd.nist.gov/vuln/detail/CVE-2017-16648
- https://access.redhat.com/security/cve/CVE-2017-17805
- https://www.cve.org/CVERecord?id=CVE-2017-17805
- https://nvd.nist.gov/vuln/detail/CVE-2017-17805
- https://access.redhat.com/security/cve/CVE-2017-17806
- https://www.cve.org/CVERecord?id=CVE-2017-17806
- https://nvd.nist.gov/vuln/detail/CVE-2017-17806
- https://access.redhat.com/security/cve/CVE-2017-18075
- https://www.cve.org/CVERecord?id=CVE-2017-18075
- https://nvd.nist.gov/vuln/detail/CVE-2017-18075
- https://access.redhat.com/security/cve/CVE-2017-18208
- https://www.cve.org/CVERecord?id=CVE-2017-18208
- https://nvd.nist.gov/vuln/detail/CVE-2017-18208
- https://lwn.net/Articles/618064/
- https://www.kernel.org/doc/Documentation/filesystems/dax.txt
- https://access.redhat.com/security/cve/CVE-2017-18344
- https://www.cve.org/CVERecord?id=CVE-2017-18344
- https://nvd.nist.gov/vuln/detail/CVE-2017-18344
- https://access.redhat.com/security/cve/CVE-2018-1065
- https://www.cve.org/CVERecord?id=CVE-2018-1065
- https://nvd.nist.gov/vuln/detail/CVE-2018-1065
- https://access.redhat.com/security/cve/CVE-2018-1068
- https://www.cve.org/CVERecord?id=CVE-2018-1068
- https://nvd.nist.gov/vuln/detail/CVE-2018-1068
- https://access.redhat.com/security/cve/CVE-2018-1092
- https://www.cve.org/CVERecord?id=CVE-2018-1092
- https://nvd.nist.gov/vuln/detail/CVE-2018-1092
- https://access.redhat.com/security/cve/CVE-2018-1094
- https://www.cve.org/CVERecord?id=CVE-2018-1094
- https://nvd.nist.gov/vuln/detail/CVE-2018-1094
- https://access.redhat.com/security/cve/CVE-2018-1095
- https://www.cve.org/CVERecord?id=CVE-2018-1095
- https://nvd.nist.gov/vuln/detail/CVE-2018-1095
- https://access.redhat.com/security/cve/CVE-2018-1118
- https://www.cve.org/CVERecord?id=CVE-2018-1118
- https://nvd.nist.gov/vuln/detail/CVE-2018-1118
- https://access.redhat.com/security/cve/CVE-2018-1120
- https://www.cve.org/CVERecord?id=CVE-2018-1120
- https://nvd.nist.gov/vuln/detail/CVE-2018-1120
- http://seclists.org/oss-sec/2018/q2/122
- https://access.redhat.com/security/cve/CVE-2018-3639
- https://www.cve.org/CVERecord?id=CVE-2018-3639
- https://nvd.nist.gov/vuln/detail/CVE-2018-3639
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1528
- https://software.intel.com/sites/default/files/managed/b9/f9/336983-Intel-Analysis-of-Speculative-Execution-Side-Channels-White-Paper.pdf
- https://software.intel.com/sites/default/files/managed/c5/63/336996-Speculative-Execution-Side-Channel-Mitigations.pdf
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html
- https://access.redhat.com/security/cve/CVE-2018-5344
- https://www.cve.org/CVERecord?id=CVE-2018-5344
- https://nvd.nist.gov/vuln/detail/CVE-2018-5344
- https://access.redhat.com/security/cve/CVE-2018-5390
- https://www.cve.org/CVERecord?id=CVE-2018-5390
- https://nvd.nist.gov/vuln/detail/CVE-2018-5390
- https://www.kb.cert.org/vuls/id/962459
- https://www.spinics.net/lists/netdev/msg514742.html
- https://access.redhat.com/security/cve/CVE-2018-5391
- https://www.cve.org/CVERecord?id=CVE-2018-5391
- https://nvd.nist.gov/vuln/detail/CVE-2018-5391
- https://www.kb.cert.org/vuls/id/641765
- https://access.redhat.com/security/cve/CVE-2018-5750
- https://www.cve.org/CVERecord?id=CVE-2018-5750
- https://nvd.nist.gov/vuln/detail/CVE-2018-5750
- https://access.redhat.com/security/cve/CVE-2018-5803
- https://www.cve.org/CVERecord?id=CVE-2018-5803
- https://nvd.nist.gov/vuln/detail/CVE-2018-5803
- https://access.redhat.com/security/cve/CVE-2018-5848
- https://www.cve.org/CVERecord?id=CVE-2018-5848
- https://nvd.nist.gov/vuln/detail/CVE-2018-5848
- https://access.redhat.com/security/cve/CVE-2018-7566
- https://www.cve.org/CVERecord?id=CVE-2018-7566
- https://nvd.nist.gov/vuln/detail/CVE-2018-7566
- https://access.redhat.com/security/cve/CVE-2018-7757
- https://www.cve.org/CVERecord?id=CVE-2018-7757
- https://nvd.nist.gov/vuln/detail/CVE-2018-7757
- https://access.redhat.com/security/cve/CVE-2018-8781
- https://www.cve.org/CVERecord?id=CVE-2018-8781
- https://nvd.nist.gov/vuln/detail/CVE-2018-8781
- https://access.redhat.com/security/cve/CVE-2018-9363
- https://www.cve.org/CVERecord?id=CVE-2018-9363
- https://nvd.nist.gov/vuln/detail/CVE-2018-9363
- https://access.redhat.com/security/cve/CVE-2018-10322
- https://www.cve.org/CVERecord?id=CVE-2018-10322
- https://nvd.nist.gov/vuln/detail/CVE-2018-10322
- https://access.redhat.com/security/cve/CVE-2018-10877
- https://www.cve.org/CVERecord?id=CVE-2018-10877
- https://nvd.nist.gov/vuln/detail/CVE-2018-10877
- https://access.redhat.com/security/cve/CVE-2018-10878
- https://www.cve.org/CVERecord?id=CVE-2018-10878
- https://nvd.nist.gov/vuln/detail/CVE-2018-10878
- https://access.redhat.com/security/cve/CVE-2018-10879
- https://www.cve.org/CVERecord?id=CVE-2018-10879
- https://nvd.nist.gov/vuln/detail/CVE-2018-10879
- https://access.redhat.com/security/cve/CVE-2018-10880
- https://www.cve.org/CVERecord?id=CVE-2018-10880
- https://nvd.nist.gov/vuln/detail/CVE-2018-10880
- https://access.redhat.com/security/cve/CVE-2018-10881
- https://www.cve.org/CVERecord?id=CVE-2018-10881
- https://nvd.nist.gov/vuln/detail/CVE-2018-10881
- https://access.redhat.com/security/cve/CVE-2018-10882
- https://www.cve.org/CVERecord?id=CVE-2018-10882
- https://nvd.nist.gov/vuln/detail/CVE-2018-10882
- https://access.redhat.com/security/cve/CVE-2018-10883
- https://www.cve.org/CVERecord?id=CVE-2018-10883
- https://nvd.nist.gov/vuln/detail/CVE-2018-10883
- https://access.redhat.com/security/cve/CVE-2018-10940
- https://www.cve.org/CVERecord?id=CVE-2018-10940
- https://nvd.nist.gov/vuln/detail/CVE-2018-10940
- https://access.redhat.com/security/cve/CVE-2018-11506
- https://www.cve.org/CVERecord?id=CVE-2018-11506
- https://nvd.nist.gov/vuln/detail/CVE-2018-11506
- https://access.redhat.com/security/cve/CVE-2018-12232
- https://www.cve.org/CVERecord?id=CVE-2018-12232
- https://nvd.nist.gov/vuln/detail/CVE-2018-12232
- https://access.redhat.com/security/cve/CVE-2018-13405
- https://www.cve.org/CVERecord?id=CVE-2018-13405
- https://nvd.nist.gov/vuln/detail/CVE-2018-13405
- https://access.redhat.com/security/cve/CVE-2018-14619
- https://www.cve.org/CVERecord?id=CVE-2018-14619
- https://nvd.nist.gov/vuln/detail/CVE-2018-14619
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b32a7dc8aef1882fbf983eb354837488cc9d54dc
- https://access.redhat.com/security/cve/CVE-2018-14641
- https://www.cve.org/CVERecord?id=CVE-2018-14641
- https://nvd.nist.gov/vuln/detail/CVE-2018-14641
- https://access.redhat.com/security/cve/CVE-2018-1000026
- https://www.cve.org/CVERecord?id=CVE-2018-1000026
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000026
- https://access.redhat.com/security/cve/CVE-2018-1000200
- https://www.cve.org/CVERecord?id=CVE-2018-1000200
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000200
- https://access.redhat.com/security/cve/CVE-2018-1000204
- https://www.cve.org/CVERecord?id=CVE-2018-1000204
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000204