[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:1855-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":42,"duplicates":43,"related":44,"reserved_at":9,"published_at":59,"modified_at":60,"state":9,"summary":61,"references_raw":63,"kevs":244,"epss":9,"epss_history":245,"metrics":246,"affected":247},"SUSE-SU-2018:1855-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 12 SP2 LTSS kernel was updated receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-5848: In the function wmi_set_ie(), the length validation code did\n  not handle unsigned integer overflow properly. As a result, a large value of\n  the 'ie_len' argument could have caused a buffer overflow (bnc#1097356)\n- CVE-2018-1000204: Prevent infoleak caused by incorrect handling of the SG_IO\n  ioctl (bsc#1096728).\n- CVE-2017-18249: The add_free_nid function did not properly track an allocated\n  nid, which allowed local users to cause a denial of service (race condition) or\n  possibly have unspecified other impact via concurrent threads (bnc#1087036)\n- CVE-2018-3665: Prevent disclosure of FPU registers (including XMM and AVX\n  registers) between processes. These registers might contain encryption keys\n  when doing SSE accelerated AES enc/decryption (bsc#1087086)\n- CVE-2017-18241: Prevent a NULL pointer dereference by using a noflush_merge\n  option that triggers a NULL value for a flush_cmd_control data structure\n  (bnc#1086400)\n- CVE-2017-13305: Prevent information disclosure vulnerability in\n  encrypted-keys (bsc#1094353).\n- CVE-2018-1093: The ext4_valid_block_bitmap function allowed attackers to\n  cause a denial of service (out-of-bounds read and system crash) via a crafted\n  ext4 image because balloc.c and ialloc.c did not validate bitmap block numbers\n  (bsc#1087095).\n- CVE-2018-1094: The ext4_fill_super function did not always initialize the\n  crc32c checksum driver, which allowed attackers to cause a denial of service\n  (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted\n  ext4 image (bsc#1087007).\n- CVE-2018-1092: The ext4_iget function mishandled the case of a root directory\n  with a zero i_links_count, which allowed attackers to cause a denial of service\n  (ext4_process_freed_data NULL pointer dereference and OOPS) via a crafted ext4\n  image (bsc#1087012).\n- CVE-2018-1130: NULL pointer dereference in dccp_write_xmit() function that\n  allowed a local user to cause a denial of service by a number of certain\n  crafted system calls (bsc#1092904).\n- CVE-2018-1065: The netfilter subsystem mishandled the case of a rule blob\n  that contains a jump but lacks a user-defined chain, which allowed local users\n  to cause a denial of service (NULL pointer dereference) by leveraging the\n  CAP_NET_RAW or CAP_NET_ADMIN capability (bsc#1083650).\n- CVE-2018-5803: Prevent error in the '_sctp_make_chunk()' function when\n  handling SCTP packets length that could have been exploited to cause a kernel\n  crash (bnc#1083900).\n- CVE-2018-7492: Prevent NULL pointer dereference in the net/rds/rdma.c\n  __rds_rdma_map() function that allowed local attackers to cause a system panic\n  and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST\n  (bsc#1082962).\n- CVE-2018-1000199: Prevent vulnerability in modify_user_hw_breakpoint() that\n  could have caused a crash and possibly memory corruption (bsc#1089895).\n\nThe following non-security bugs were fixed:\n\n- ALSA: timer: Fix pause event notification (bsc#973378).\n- Fix excessive newline in /proc/*/status (bsc#1094823).\n- Fix the patch content (bsc#1085185)\n- KVM: x86: Sync back MSR_IA32_SPEC_CTRL to VCPU data structure (bsc#1096242, bsc#1096281).\n- Revert 'bs-upload-kernel: do not set %opensuse_bs' This reverts commit e89e2b8cbef05df6c874ba70af3cb4c57f82a821.\n- ipv6: add mtu lock check in __ip6_rt_update_pmtu (bsc#1092552).\n- ipv6: omit traffic class when calculating flow hash (bsc#1095042).\n- kgraft/bnx2fc: Do not block kGraft in bnx2fc_l2_rcv kthread (bsc#1094033).\n- mm, page_alloc: do not break __GFP_THISNODE by zonelist reset (bsc#1079152, VM Functionality).\n- x86/boot: Fix early command-line parsing when partial word matches (bsc#1096140).\n- x86/bugs: IBRS: make runtime disabling fully dynamic (bsc#1096281).\n- x86/bugs: Respect retpoline command line option (bsc#1068032).\n- x86/bugs: correctly force-disable IBRS on !SKL systems (bsc#1092497).\n- x86/bugs: spec_ctrl must be cleared from cpu_caps_set when being disabled (bsc#1096140).\n- x86/kaiser: export symbol kaiser_set_shadow_pgd() (bsc#1092813)\n- xfs: convert XFS_AGFL_SIZE to a helper function (bsc#1090955, bsc#1090534).\n- xfs: detect agfl count corruption and reset agfl (bsc#1090955, bsc#1090534).\n- xfs: do not log/recover swapext extent owner changes for deleted inodes (bsc#1090955).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40],{"_key":15},"CVE-2017-13305",{"_key":17},"CVE-2017-18241",{"_key":19},"CVE-2017-18249",{"_key":21},"CVE-2018-1000199",{"_key":23},"CVE-2018-1000204",{"_key":25},"CVE-2018-1065",{"_key":27},"CVE-2018-1092",{"_key":29},"CVE-2018-1093",{"_key":31},"CVE-2018-1094",{"_key":33},"CVE-2018-1130",{"_key":35},"CVE-2018-3665",{"_key":37},"CVE-2018-5803",{"_key":39},"CVE-2018-5848",{"_key":41},"CVE-2018-7492",[],[],[45,46,47,48,49,50,51,52,53,54,55,56,57,58],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},"2018-06-29T14:41:33Z","2026-02-04T04:40:30.867581Z",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[64,70,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,192,196,200,204,208,212,216,220,224,228,232,236,240],{"url":65,"sources":66,"tags":68},"https://www.suse.com/support/update/announcement/2018/suse-su-20181855-1/",[67],"osv_suse",[69],"Advisory",{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1068032",[67],[74],"REPORT",{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/1079152",[67],[74],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1082962",[67],[74],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/1083650",[67],[74],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/1083900",[67],[74],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/1085185",[67],[74],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/1086400",[67],[74],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/1087007",[67],[74],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/1087012",[67],[74],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/1087036",[67],[74],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1087086",[67],[74],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1087095",[67],[74],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1089895",[67],[74],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1090534",[67],[74],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1090955",[67],[74],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1092497",[67],[74],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1092552",[67],[74],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1092813",[67],[74],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1092904",[67],[74],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1094033",[67],[74],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1094353",[67],[74],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1094823",[67],[74],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1095042",[67],[74],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1096140",[67],[74],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1096242",[67],[74],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1096281",[67],[74],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1096728",[67],[74],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1097356",[67],[74],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/973378",[67],[74],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2017-13305",[67],[191],"WEB",{"url":193,"sources":194,"tags":195},"https://www.suse.com/security/cve/CVE-2017-18241",[67],[191],{"url":197,"sources":198,"tags":199},"https://www.suse.com/security/cve/CVE-2017-18249",[67],[191],{"url":201,"sources":202,"tags":203},"https://www.suse.com/security/cve/CVE-2018-1000199",[67],[191],{"url":205,"sources":206,"tags":207},"https://www.suse.com/security/cve/CVE-2018-1000204",[67],[191],{"url":209,"sources":210,"tags":211},"https://www.suse.com/security/cve/CVE-2018-1065",[67],[191],{"url":213,"sources":214,"tags":215},"https://www.suse.com/security/cve/CVE-2018-1092",[67],[191],{"url":217,"sources":218,"tags":219},"https://www.suse.com/security/cve/CVE-2018-1093",[67],[191],{"url":221,"sources":222,"tags":223},"https://www.suse.com/security/cve/CVE-2018-1094",[67],[191],{"url":225,"sources":226,"tags":227},"https://www.suse.com/security/cve/CVE-2018-1130",[67],[191],{"url":229,"sources":230,"tags":231},"https://www.suse.com/security/cve/CVE-2018-3665",[67],[191],{"url":233,"sources":234,"tags":235},"https://www.suse.com/security/cve/CVE-2018-5803",[67],[191],{"url":237,"sources":238,"tags":239},"https://www.suse.com/security/cve/CVE-2018-5848",[67],[191],{"url":241,"sources":242,"tags":243},"https://www.suse.com/security/cve/CVE-2018-7492",[67],[191],[],[],[],[248,261,265,269,273,278,282,286,290,295,299,303,307,314,318,322],{"ecosystem":249,"name":250,"vendor":251,"product":252,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":252,"source":9,"versions":254},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Enterprise Storage 4","rpm",[255],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},"lt4_4_121_92_85_1",true,"ecosystem","4.4.121-92.85.1","excluding",{"ecosystem":249,"name":250,"vendor":251,"product":262,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":262,"source":9,"versions":263},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[264],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":250,"vendor":251,"product":266,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":266,"source":9,"versions":267},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[268],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":250,"vendor":251,"product":270,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":270,"source":9,"versions":271},"kernel-default&distro=SUSE OpenStack Cloud 7",[272],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":274,"vendor":251,"product":275,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":275,"source":9,"versions":276},"kernel-source","kernel-source&distro=SUSE Enterprise Storage 4",[277],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":274,"vendor":251,"product":279,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":279,"source":9,"versions":280},"kernel-source&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[281],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":274,"vendor":251,"product":283,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":283,"source":9,"versions":284},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[285],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":274,"vendor":251,"product":287,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":287,"source":9,"versions":288},"kernel-source&distro=SUSE OpenStack Cloud 7",[289],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":291,"vendor":251,"product":292,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":292,"source":9,"versions":293},"kernel-syms","kernel-syms&distro=SUSE Enterprise Storage 4",[294],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":291,"vendor":251,"product":296,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":296,"source":9,"versions":297},"kernel-syms&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[298],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":291,"vendor":251,"product":300,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":300,"source":9,"versions":301},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[302],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":291,"vendor":251,"product":304,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":304,"source":9,"versions":305},"kernel-syms&distro=SUSE OpenStack Cloud 7",[306],{"version":256,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":259,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":308,"vendor":251,"product":309,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":309,"source":9,"versions":310},"kgraft-patch-SLE12-SP2_Update_23","kgraft-patch-SLE12-SP2_Update_23&distro=SUSE Enterprise Storage 4",[311],{"version":312,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":313,"version_end_type":260,"fixed_in":9},"lt1_3_5_1","1-3.5.1",{"ecosystem":249,"name":308,"vendor":251,"product":315,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":315,"source":9,"versions":316},"kgraft-patch-SLE12-SP2_Update_23&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[317],{"version":312,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":313,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":308,"vendor":251,"product":319,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":319,"source":9,"versions":320},"kgraft-patch-SLE12-SP2_Update_23&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[321],{"version":312,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":313,"version_end_type":260,"fixed_in":9},{"ecosystem":249,"name":308,"vendor":251,"product":323,"cpe_part":9,"purl_type":253,"purl_namespace":251,"purl_name":323,"source":9,"versions":324},"kgraft-patch-SLE12-SP2_Update_23&distro=SUSE OpenStack Cloud 7",[325],{"version":312,"is_range":257,"range_type":258,"version_start":9,"version_start_type":9,"version_end":313,"version_end_type":260,"fixed_in":9}]