[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:3084-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":70,"duplicates":71,"related":72,"reserved_at":9,"published_at":101,"modified_at":102,"state":9,"summary":103,"references_raw":105,"kevs":450,"epss":9,"epss_history":451,"metrics":452,"affected":453},"SUSE-SU-2018:3084-1","Security update for the Linux Kernel\n\n\n\nThe SUSE Linux Enterprise 12 SP2 LTSS kernel was updated to receive various security and bugfixes.\n\n- CVE-2018-10853: A flaw was found in the way the KVM hypervisor emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest (bnc#1097104).\n- CVE-2018-10876: A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image. (bnc#1099811)\n- CVE-2018-10877: Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image. (bnc#1099846)\n- CVE-2018-10878: A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image. (bnc#1099813)\n- CVE-2018-10879: A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image. (bnc#1099844)\n- CVE-2018-10880: Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service. (bnc#1099845)\n- CVE-2018-10881: A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099864)\n- CVE-2018-10882: A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image. (bnc#1099849)\n- CVE-2018-10883: A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (bnc#1099863)\n- CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation (bnc#1105322).\n- CVE-2018-10938: A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw (bnc#1106016).\n- CVE-2018-10940: The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c allowed local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory (bnc#1092903).\n- CVE-2018-12896: An Integer Overflow in kernel/time/posix-timers.c in the POSIX timer code is caused by the way the overrun accounting works. Depending on interval and expiry time values, the overrun can be larger than INT_MAX, but the accounting is int based. This basically made the accounting values, which are visible to user space via timer_getoverrun(2) and siginfo::si_overrun, random. For example, a local user can cause a denial of service (signed integer overflow) via crafted mmap, futex, timer_create, and timer_settime system calls (bnc#1099922).\n- CVE-2018-13093: There is a NULL pointer dereference and panic in lookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a corrupted xfs image. This occurs because of a lack of proper validation that cached inodes are free during allocation (bnc#1100001).\n- CVE-2018-13094: An OOPS may occur for a corrupted xfs image after xfs_da_shrink_inode() is called with a NULL bp (bnc#1100000).\n- CVE-2018-13095: A denial of service (memory corruption and BUG) can occur for a corrupted xfs image upon encountering an inode that is in extent format, but has more extents than fit in the inode fork (bnc#1099999).\n- CVE-2018-14617: There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed catalog data, and is mounted read-only without a metadata directory (bnc#1102870).\n- CVE-2018-14678: The xen_failsafe_callback entry point in arch/x86/entry/entry_64.S did not properly maintain RBX, which allowed local users to cause a denial of service (uninitialized memory usage and system crash). Within Xen, 64-bit x86 PV Linux guest OS users can trigger a guest OS crash or possibly gain privileges (bnc#1102715).\n- CVE-2018-15572: The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c did not always fill RSB upon a context switch, which made it easier for attackers to conduct userspace-userspace spectreRSB attacks (bnc#1102517 bnc#1105296).\n- CVE-2018-15594: arch/x86/kernel/paravirt.c mishandled certain indirect calls, which made it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests (bnc#1105348).\n- CVE-2018-16276: Local attackers could use user access read/writes with incorrect bounds checking in the yurex USB driver to crash the kernel or potentially escalate privileges (bnc#1106095).\n- CVE-2018-16658: An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 (bnc#1107689).\n- CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bnc#1108399).\n- CVE-2018-6554: Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c allowed local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket (bnc#1106509).\n- CVE-2018-6555: The irda_setsockopt function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c allowed local users to cause a denial of service (ias_object use-after-free and system crash) or possibly have unspecified other impact via an AF_IRDA socket (bnc#1106511).\n- CVE-2018-7757: Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c allowed local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by the /sys/class/sas_phy/phy-1:0:12/invalid_dword_count file (bnc#1084536).\n- CVE-2018-9363: A buffer overflow in bluetooth HID report processing could be used by malicious bluetooth devices to crash the kernel or potentially execute code (bnc#1105292).\nThe following security bugs were fixed:\n- CVE-2018-7480: The blkcg_init_queue function in block/blk-cgroup.c allowed local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure (bnc#1082863).\n\nThe following non-security bugs were fixed:\n\n- atm: Preserve value of skb->truesize when accounting to vcc (bsc#1089066).\n- bcache: avoid unncessary cache prefetch bch_btree_node_get() (bsc#1064232).\n- bcache: calculate the number of incremental GC nodes according to the total of btree nodes (bsc#1064232).\n- bcache: display rate debug parameters to 0 when writeback is not running (bsc#1064232).\n- bcache: do not check return value of debugfs_create_dir() (bsc#1064232).\n- bcache: finish incremental GC (bsc#1064232).\n- bcache: fix error setting writeback_rate through sysfs interface (bsc#1064232).\n- bcache: fix I/O significant decline while backend devices registering (bsc#1064232).\n- bcache: free heap cache_set->flush_btree in bch_journal_free (bsc#1064232).\n- bcache: make the pr_err statement used for ENOENT only in sysfs_attatch section (bsc#1064232).\n- bcache: release dc->writeback_lock properly in bch_writeback_thread() (bsc#1064232).\n- bcache: set max writeback rate when I/O request is idle (bsc#1064232).\n- bcache: simplify the calculation of the total amount of flash dirty data (bsc#1064232).\n- ext4: check for allocation block validity with block group locked (bsc#1104495).\n- ext4: do not update checksum of new initialized bitmaps (bnc#1012382).\n- ext4: fix check to prevent initializing reserved inodes (bsc#1104319).\n- ext4: fix false negatives *and* false positives in ext4_check_descriptors() (bsc#1103445).\n- ibmvnic: Include missing return code checks in reset function (bnc#1107966).\n- kABI: protect struct x86_emulate_ops (kabi).\n- kabi/severities: Ignore missing cpu_tss_tramp (bsc#1099597)\n- kabi: x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ (bnc#1105536).\n- kvm: MMU: always terminate page walks at level 1 (bsc#1062604).\n- kvm: MMU: simplify last_pte_bitmap (bsc#1062604).\n- kvm: nVMX: update last_nonleaf_level when initializing nested EPT (bsc#1062604).\n- kvm: VMX: fixes for vmentry_l1d_flush module parameter (bsc#1106369).\n- kvm: VMX: Work around kABI breakage in 'enum vmx_l1d_flush_state' (bsc#1106369).\n- net: add skb_condense() helper (bsc#1089066).\n- net: adjust skb->truesize in pskb_expand_head() (bsc#1089066).\n- net: adjust skb->truesize in ___pskb_trim() (bsc#1089066).\n- net: ena: Eliminate duplicate barriers on weakly-ordered archs (bsc#1108239).\n- net: ena: fix device destruction to gracefully free resources (bsc#1108239).\n- net: ena: fix driver when PAGE_SIZE == 64kB (bsc#1108239).\n- net: ena: fix incorrect usage of memory barriers (bsc#1108239).\n- net: ena: fix missing calls to READ_ONCE (bsc#1108239).\n- net: ena: fix missing lock during device destruction (bsc#1108239).\n- net: ena: fix potential double ena_destroy_device() (bsc#1108239).\n- net: ena: fix surprise unplug NULL dereference kernel crash (bsc#1108239).\n- net: ena: Fix use of uninitialized DMA address bits field (bsc#1108239).\n- netfilter: xt_CT: fix refcnt leak on error path (bnc#1012382 bsc#1100152).\n- netlink: do not enter direct reclaim from netlink_trim() (bsc#1042286).\n- nfs: Use an appropriate work queue for direct-write completion (bsc#1082519).\n- ovl: fix random return value on mount (bsc#1099993).\n- ovl: fix uid/gid when creating over whiteout (bsc#1099993).\n- ovl: modify ovl_permission() to do checks on two inodes (bsc#1106512).\n- ovl: override creds with the ones from the superblock mounter (bsc#1099993).\n- powerpc: Avoid code patching freed init sections (bnc#1107735).\n- powerpc/livepatch: Fix livepatch stack access (bsc#1094466).\n- powerpc/modules: Do not try to restore r2 after a sibling call (bsc#1094466).\n- powerpc/tm: Avoid possible userspace r1 corruption on reclaim (bsc#1109333).\n- powerpc/tm: Fix userspace r13 corruption (bsc#1109333).\n- provide special timeout module parameters for EC2 (bsc#1065364).\n- stop_machine: Atomically queue and wake stopper threads (git-fixes).\n- stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock (bsc#1088810).\n- usbip: vhci_sysfs: fix potential Spectre v1 (bsc#1096547).\n- x86/entry/64: Remove %ebx handling from error_entry/exit (bnc#1102715).\n- x86/speculation/l1tf: Fix off-by-one error when warning that system has too much RAM (bnc#1105536).\n- x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ (bnc#1105536).\n- x86/speculation/l1tf: Suggest what to do on systems with too much RAM (bnc#1105536).\n- x86/speculation: Use ARCH_CAPABILITIES to skip L1D flush on vmentry (bsc#1106369).\n- x86: Drop kernel trampoline stack. It is involved in breaking kdump/kexec infrastucture. (bsc#1099597)\n- xen: avoid crash in disable_hotplug_cpu (bsc#1106594).\n- xen/blkback: do not keep persistent grants too long (bsc#1085042).\n- xen/blkback: move persistent grants flags to bool (bsc#1085042).\n- xen/blkfront: cleanup stale persistent grants (bsc#1085042).\n- xen/blkfront: reorder tests in xlblk_init() (bsc#1085042).\n- xfs: add a new xfs_iext_lookup_extent_before helper (bsc#1095344).\n- xfs: add asserts for the mmap lock in xfs_{insert,collapse}_file_space (bsc#1095344).\n- xfs: add a xfs_bmap_fork_to_state helper (bsc#1095344).\n- xfs: add a xfs_iext_update_extent helper (bsc#1095344).\n- xfs: add comments documenting the rebalance algorithm (bsc#1095344).\n- xfs: add some comments to xfs_iext_insert/xfs_iext_insert_node (bsc#1095344).\n- xfs: add xfs_trim_extent (bsc#1095344).\n- xfs: allow unaligned extent records in xfs_bmbt_disk_set_all (bsc#1095344).\n- xfs: borrow indirect blocks from freed extent when available (bsc#1095344).\n- xfs: cleanup xfs_bmap_last_before (bsc#1095344).\n- xfs: do not create overlapping extents in xfs_bmap_add_extent_delay_real (bsc#1095344).\n- xfs: do not rely on extent indices in xfs_bmap_collapse_extents (bsc#1095344).\n- xfs: do not rely on extent indices in xfs_bmap_insert_extents (bsc#1095344).\n- xfs: do not set XFS_BTCUR_BPRV_WASDEL in xfs_bunmapi (bsc#1095344).\n- xfs: during btree split, save new block key & ptr for future insertion (bsc#1095344).\n- xfs: factor out a helper to initialize a local format inode fork (bsc#1095344).\n- xfs: fix memory leak in xfs_iext_free_last_leaf (bsc#1095344).\n- xfs: fix number of records handling in xfs_iext_split_leaf (bsc#1095344).\n- xfs: handle indlen shortage on delalloc extent merge (bsc#1095344).\n- xfs: handle zero entries case in xfs_iext_rebalance_leaf (bsc#1095344).\n- xfs: improve kmem_realloc (bsc#1095344).\n- xfs: inline xfs_shift_file_space into callers (bsc#1095344).\n- xfs: introduce the xfs_iext_cursor abstraction (bsc#1095344).\n- xfs: iterate over extents in xfs_bmap_extents_to_btree (bsc#1095344).\n- xfs: iterate over extents in xfs_iextents_copy (bsc#1095344).\n- xfs: make better use of the 'state' variable in xfs_bmap_del_extent_real (bsc#1095344).\n- xfs: merge xfs_bmap_read_extents into xfs_iread_extents (bsc#1095344).\n- xfs: move pre/post-bmap tracing into xfs_iext_update_extent (bsc#1095344).\n- xfs: move some code around inside xfs_bmap_shift_extents (bsc#1095344).\n- xfs: move some more code into xfs_bmap_del_extent_real (bsc#1095344).\n- xfs: move xfs_bmbt_irec and xfs_exntst_t to xfs_types.h (bsc#1095344).\n- xfs: move xfs_iext_insert tracepoint to report useful information (bsc#1095344).\n- xfs: new inode extent list lookup helpers (bsc#1095344).\n- xfs: pass an on-disk extent to xfs_bmbt_validate_extent (bsc#1095344).\n- xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_lookup_eq (bsc#1095344).\n- xfs: pass a struct xfs_bmbt_irec to xfs_bmbt_update (bsc#1095344).\n- xfs: pass struct xfs_bmbt_irec to xfs_bmbt_validate_extent (bsc#1095344).\n- xfs: provide helper for counting extents from if_bytes (bsc#1095344).\n- xfs: refactor delalloc accounting in xfs_bmap_add_extent_delay_real (bsc#1095344).\n- xfs: refactor delalloc indlen reservation split into helper (bsc#1095344).\n- xfs: refactor dir2 leaf readahead shadow buffer cleverness (bsc#1095344).\n- xfs: refactor xfs_bmap_add_extent_delay_real (bsc#1095344).\n- xfs: refactor xfs_bmap_add_extent_hole_delay (bsc#1095344).\n- xfs: refactor xfs_bmap_add_extent_hole_real (bsc#1095344).\n- xfs: refactor xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n- xfs: refactor xfs_bunmapi_cow (bsc#1095344).\n- xfs: refactor xfs_del_extent_real (bsc#1095344).\n- xfs: remove a duplicate assignment in xfs_bmap_add_extent_delay_real (bsc#1095344).\n- xfs: remove all xfs_bmbt_set_* helpers except for xfs_bmbt_set_all (bsc#1095344).\n- xfs: remove a superflous assignment in xfs_iext_remove_node (bsc#1095344).\n- xfs: Remove dead code from inode recover function (bsc#1105396).\n- xfs: remove if_rdev (bsc#1095344).\n- xfs: remove prev argument to xfs_bmapi_reserve_delalloc (bsc#1095344).\n- xfs: remove support for inlining data/extents into the inode fork (bsc#1095344).\n- xfs: remove the never fully implemented UUID fork format (bsc#1095344).\n- xfs: remove the nr_extents argument to xfs_iext_insert (bsc#1095344).\n- xfs: remove the nr_extents argument to xfs_iext_remove (bsc#1095344).\n- xfs: remove XFS_BMAP_MAX_SHIFT_EXTENTS (bsc#1095344).\n- xfs: remove XFS_BMAP_TRACE_EXLIST (bsc#1095344).\n- xfs: remove xfs_bmbt_get_state (bsc#1095344).\n- xfs: remove xfs_bmse_shift_one (bsc#1095344).\n- xfs: rename bno to end in __xfs_bunmapi (bsc#1095344).\n- xfs: repair malformed inode items during log recovery (bsc#1105396).\n- xfs: replace xfs_bmbt_lookup_ge with xfs_bmbt_lookup_first (bsc#1095344).\n- xfs: replace xfs_qm_get_rtblks with a direct call to xfs_bmap_count_leaves (bsc#1095344).\n- xfs: rewrite getbmap using the xfs_iext_* helpers (bsc#1095344).\n- xfs: rewrite xfs_bmap_count_leaves using xfs_iext_get_extent (bsc#1095344).\n- xfs: rewrite xfs_bmap_first_unused to make better use of xfs_iext_get_extent (bsc#1095344).\n- xfs: simplify the xfs_getbmap interface (bsc#1095344).\n- xfs: simplify validation of the unwritten extent bit (bsc#1095344).\n- xfs: split indlen reservations fairly when under reserved (bsc#1095344).\n- xfs: split xfs_bmap_shift_extents (bsc#1095344).\n- xfs: switch xfs_bmap_local_to_extents to use xfs_iext_insert (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_add_extent_delay_real (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_add_extent_hole_delay (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_add_extent_hole_real (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_add_extent_unwritten_real (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_collapse_extents (bsc#1095344).\n- xfs: treat idx as a cursor in xfs_bmap_del_extent_* (bsc#1095344).\n- xfs: update freeblocks counter after extent deletion (bsc#1095344).\n- xfs: update got in xfs_bmap_shift_update_extent (bsc#1095344).\n- xfs: use a b+tree for the in-core extent list (bsc#1095344).\n- xfs: use correct state defines in xfs_bmap_del_extent_{cow,delay} (bsc#1095344).\n- xfs: use new extent lookup helpers in xfs_bmapi_read (bsc#1095344).\n- xfs: use new extent lookup helpers in xfs_bmapi_write (bsc#1095344).\n- xfs: use new extent lookup helpers in __xfs_bunmapi (bsc#1095344).\n- xfs: use the state defines in xfs_bmap_del_extent_real (bsc#1095344).\n- xfs: use xfs_bmap_del_extent_delay for the data fork as well (bsc#1095344).\n- xfs: use xfs_iext_*_extent helpers in xfs_bmap_shift_extents (bsc#1095344).\n- xfs: use xfs_iext_*_extent helpers in xfs_bmap_split_extent_at (bsc#1095344).\n- xfs: use xfs_iext_get_extent instead of open coding it (bsc#1095344).\n- xfs: use xfs_iext_get_extent in xfs_bmap_first_unused (bsc#1095344).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68],{"_key":15},"CVE-2018-10853",{"_key":17},"CVE-2018-10876",{"_key":19},"CVE-2018-10877",{"_key":21},"CVE-2018-10878",{"_key":23},"CVE-2018-10879",{"_key":25},"CVE-2018-10880",{"_key":27},"CVE-2018-10881",{"_key":29},"CVE-2018-10882",{"_key":31},"CVE-2018-10883",{"_key":33},"CVE-2018-10902",{"_key":35},"CVE-2018-10938",{"_key":37},"CVE-2018-10940",{"_key":39},"CVE-2018-12896",{"_key":41},"CVE-2018-13093",{"_key":43},"CVE-2018-13094",{"_key":45},"CVE-2018-13095",{"_key":47},"CVE-2018-14617",{"_key":49},"CVE-2018-14678",{"_key":51},"CVE-2018-15572",{"_key":53},"CVE-2018-15594",{"_key":55},"CVE-2018-16276",{"_key":57},"CVE-2018-16658",{"_key":59},"CVE-2018-17182",{"_key":61},"CVE-2018-6554",{"_key":63},"CVE-2018-6555",{"_key":65},"CVE-2018-7480",{"_key":67},"CVE-2018-7757",{"_key":69},"CVE-2018-9363",[],[],[73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},"2018-10-09T12:00:14Z","2026-02-04T03:44:18.772548Z",{"cisa_kev":104,"cisa_ransomware":104,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[106,112,117,121,125,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,265,269,273,277,281,285,289,293,297,301,305,309,313,317,321,325,329,333,337,342,346,350,354,358,362,366,370,374,378,382,386,390,394,398,402,406,410,414,418,422,426,430,434,438,442,446],{"url":107,"sources":108,"tags":110},"https://www.suse.com/support/update/announcement/2018/suse-su-20183084-1/",[109],"osv_suse",[111],"Advisory",{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1012382",[109],[116],"REPORT",{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1042286",[109],[116],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1062604",[109],[116],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1064232",[109],[116],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1065364",[109],[116],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1082519",[109],[116],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1082863",[109],[116],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1084536",[109],[116],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1085042",[109],[116],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/1088810",[109],[116],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/1089066",[109],[116],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/1092903",[109],[116],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/1094466",[109],[116],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1095344",[109],[116],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/1096547",[109],[116],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/1097104",[109],[116],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/1099597",[109],[116],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/1099811",[109],[116],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/1099813",[109],[116],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/1099844",[109],[116],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/1099845",[109],[116],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/1099846",[109],[116],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/1099849",[109],[116],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/1099863",[109],[116],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/1099864",[109],[116],{"url":214,"sources":215,"tags":216},"https://bugzilla.suse.com/1099922",[109],[116],{"url":218,"sources":219,"tags":220},"https://bugzilla.suse.com/1099993",[109],[116],{"url":222,"sources":223,"tags":224},"https://bugzilla.suse.com/1099999",[109],[116],{"url":226,"sources":227,"tags":228},"https://bugzilla.suse.com/1100000",[109],[116],{"url":230,"sources":231,"tags":232},"https://bugzilla.suse.com/1100001",[109],[116],{"url":234,"sources":235,"tags":236},"https://bugzilla.suse.com/1100152",[109],[116],{"url":238,"sources":239,"tags":240},"https://bugzilla.suse.com/1102517",[109],[116],{"url":242,"sources":243,"tags":244},"https://bugzilla.suse.com/1102715",[109],[116],{"url":246,"sources":247,"tags":248},"https://bugzilla.suse.com/1102870",[109],[116],{"url":250,"sources":251,"tags":252},"https://bugzilla.suse.com/1103445",[109],[116],{"url":254,"sources":255,"tags":256},"https://bugzilla.suse.com/1104319",[109],[116],{"url":258,"sources":259,"tags":260},"https://bugzilla.suse.com/1104495",[109],[116],{"url":262,"sources":263,"tags":264},"https://bugzilla.suse.com/1105292",[109],[116],{"url":266,"sources":267,"tags":268},"https://bugzilla.suse.com/1105296",[109],[116],{"url":270,"sources":271,"tags":272},"https://bugzilla.suse.com/1105322",[109],[116],{"url":274,"sources":275,"tags":276},"https://bugzilla.suse.com/1105348",[109],[116],{"url":278,"sources":279,"tags":280},"https://bugzilla.suse.com/1105396",[109],[116],{"url":282,"sources":283,"tags":284},"https://bugzilla.suse.com/1105536",[109],[116],{"url":286,"sources":287,"tags":288},"https://bugzilla.suse.com/1106016",[109],[116],{"url":290,"sources":291,"tags":292},"https://bugzilla.suse.com/1106095",[109],[116],{"url":294,"sources":295,"tags":296},"https://bugzilla.suse.com/1106369",[109],[116],{"url":298,"sources":299,"tags":300},"https://bugzilla.suse.com/1106509",[109],[116],{"url":302,"sources":303,"tags":304},"https://bugzilla.suse.com/1106511",[109],[116],{"url":306,"sources":307,"tags":308},"https://bugzilla.suse.com/1106512",[109],[116],{"url":310,"sources":311,"tags":312},"https://bugzilla.suse.com/1106594",[109],[116],{"url":314,"sources":315,"tags":316},"https://bugzilla.suse.com/1107689",[109],[116],{"url":318,"sources":319,"tags":320},"https://bugzilla.suse.com/1107735",[109],[116],{"url":322,"sources":323,"tags":324},"https://bugzilla.suse.com/1107966",[109],[116],{"url":326,"sources":327,"tags":328},"https://bugzilla.suse.com/1108239",[109],[116],{"url":330,"sources":331,"tags":332},"https://bugzilla.suse.com/1108399",[109],[116],{"url":334,"sources":335,"tags":336},"https://bugzilla.suse.com/1109333",[109],[116],{"url":338,"sources":339,"tags":340},"https://www.suse.com/security/cve/CVE-2018-10853",[109],[341],"WEB",{"url":343,"sources":344,"tags":345},"https://www.suse.com/security/cve/CVE-2018-10876",[109],[341],{"url":347,"sources":348,"tags":349},"https://www.suse.com/security/cve/CVE-2018-10877",[109],[341],{"url":351,"sources":352,"tags":353},"https://www.suse.com/security/cve/CVE-2018-10878",[109],[341],{"url":355,"sources":356,"tags":357},"https://www.suse.com/security/cve/CVE-2018-10879",[109],[341],{"url":359,"sources":360,"tags":361},"https://www.suse.com/security/cve/CVE-2018-10880",[109],[341],{"url":363,"sources":364,"tags":365},"https://www.suse.com/security/cve/CVE-2018-10881",[109],[341],{"url":367,"sources":368,"tags":369},"https://www.suse.com/security/cve/CVE-2018-10882",[109],[341],{"url":371,"sources":372,"tags":373},"https://www.suse.com/security/cve/CVE-2018-10883",[109],[341],{"url":375,"sources":376,"tags":377},"https://www.suse.com/security/cve/CVE-2018-10902",[109],[341],{"url":379,"sources":380,"tags":381},"https://www.suse.com/security/cve/CVE-2018-10938",[109],[341],{"url":383,"sources":384,"tags":385},"https://www.suse.com/security/cve/CVE-2018-10940",[109],[341],{"url":387,"sources":388,"tags":389},"https://www.suse.com/security/cve/CVE-2018-12896",[109],[341],{"url":391,"sources":392,"tags":393},"https://www.suse.com/security/cve/CVE-2018-13093",[109],[341],{"url":395,"sources":396,"tags":397},"https://www.suse.com/security/cve/CVE-2018-13094",[109],[341],{"url":399,"sources":400,"tags":401},"https://www.suse.com/security/cve/CVE-2018-13095",[109],[341],{"url":403,"sources":404,"tags":405},"https://www.suse.com/security/cve/CVE-2018-14617",[109],[341],{"url":407,"sources":408,"tags":409},"https://www.suse.com/security/cve/CVE-2018-14678",[109],[341],{"url":411,"sources":412,"tags":413},"https://www.suse.com/security/cve/CVE-2018-15572",[109],[341],{"url":415,"sources":416,"tags":417},"https://www.suse.com/security/cve/CVE-2018-15594",[109],[341],{"url":419,"sources":420,"tags":421},"https://www.suse.com/security/cve/CVE-2018-16276",[109],[341],{"url":423,"sources":424,"tags":425},"https://www.suse.com/security/cve/CVE-2018-16658",[109],[341],{"url":427,"sources":428,"tags":429},"https://www.suse.com/security/cve/CVE-2018-17182",[109],[341],{"url":431,"sources":432,"tags":433},"https://www.suse.com/security/cve/CVE-2018-6554",[109],[341],{"url":435,"sources":436,"tags":437},"https://www.suse.com/security/cve/CVE-2018-6555",[109],[341],{"url":439,"sources":440,"tags":441},"https://www.suse.com/security/cve/CVE-2018-7480",[109],[341],{"url":443,"sources":444,"tags":445},"https://www.suse.com/security/cve/CVE-2018-7757",[109],[341],{"url":447,"sources":448,"tags":449},"https://www.suse.com/security/cve/CVE-2018-9363",[109],[341],[],[],[],[454,467,471,475,479,483,487,492,496,500,504,508,513,517,521,525,529,536,540,544,548,555,559,563,567],{"ecosystem":455,"name":456,"vendor":457,"product":458,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":458,"source":9,"versions":460},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Enterprise Storage 4","rpm",[461],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},"lt4_4_121_92_95_1",true,"ecosystem","4.4.121-92.95.1","excluding",{"ecosystem":455,"name":456,"vendor":457,"product":468,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":468,"source":9,"versions":469},"kernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP2",[470],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":456,"vendor":457,"product":472,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":472,"source":9,"versions":473},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP2-BCL",[474],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":456,"vendor":457,"product":476,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":476,"source":9,"versions":477},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[478],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":456,"vendor":457,"product":480,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":480,"source":9,"versions":481},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[482],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":456,"vendor":457,"product":484,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":484,"source":9,"versions":485},"kernel-default&distro=SUSE OpenStack Cloud 7",[486],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":488,"vendor":457,"product":489,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":489,"source":9,"versions":490},"kernel-source","kernel-source&distro=SUSE Enterprise Storage 4",[491],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":488,"vendor":457,"product":493,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":493,"source":9,"versions":494},"kernel-source&distro=SUSE Linux Enterprise Server 12 SP2-BCL",[495],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":488,"vendor":457,"product":497,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":497,"source":9,"versions":498},"kernel-source&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[499],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":488,"vendor":457,"product":501,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":501,"source":9,"versions":502},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[503],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":488,"vendor":457,"product":505,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":505,"source":9,"versions":506},"kernel-source&distro=SUSE OpenStack Cloud 7",[507],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":509,"vendor":457,"product":510,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":510,"source":9,"versions":511},"kernel-syms","kernel-syms&distro=SUSE Enterprise Storage 4",[512],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":509,"vendor":457,"product":514,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":514,"source":9,"versions":515},"kernel-syms&distro=SUSE Linux Enterprise Server 12 SP2-BCL",[516],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":509,"vendor":457,"product":518,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":518,"source":9,"versions":519},"kernel-syms&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[520],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":509,"vendor":457,"product":522,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":522,"source":9,"versions":523},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[524],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":509,"vendor":457,"product":526,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":526,"source":9,"versions":527},"kernel-syms&distro=SUSE OpenStack Cloud 7",[528],{"version":462,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":465,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":530,"vendor":457,"product":531,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":531,"source":9,"versions":532},"kgraft-patch-SLE12-SP2_Update_25","kgraft-patch-SLE12-SP2_Update_25&distro=SUSE Enterprise Storage 4",[533],{"version":534,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":535,"version_end_type":466,"fixed_in":9},"lt1_3_4_1","1-3.4.1",{"ecosystem":455,"name":530,"vendor":457,"product":537,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":537,"source":9,"versions":538},"kgraft-patch-SLE12-SP2_Update_25&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[539],{"version":534,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":535,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":530,"vendor":457,"product":541,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":541,"source":9,"versions":542},"kgraft-patch-SLE12-SP2_Update_25&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[543],{"version":534,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":535,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":530,"vendor":457,"product":545,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":545,"source":9,"versions":546},"kgraft-patch-SLE12-SP2_Update_25&distro=SUSE OpenStack Cloud 7",[547],{"version":534,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":535,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":549,"vendor":457,"product":550,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":550,"source":9,"versions":551},"lttng-modules","lttng-modules&distro=SUSE Enterprise Storage 4",[552],{"version":553,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":554,"version_end_type":466,"fixed_in":9},"lt2_7_1_9_6_1","2.7.1-9.6.1",{"ecosystem":455,"name":549,"vendor":457,"product":556,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":556,"source":9,"versions":557},"lttng-modules&distro=SUSE Linux Enterprise Server 12 SP2-BCL",[558],{"version":553,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":554,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":549,"vendor":457,"product":560,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":560,"source":9,"versions":561},"lttng-modules&distro=SUSE Linux Enterprise Server 12 SP2-LTSS",[562],{"version":553,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":554,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":549,"vendor":457,"product":564,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":564,"source":9,"versions":565},"lttng-modules&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2",[566],{"version":553,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":554,"version_end_type":466,"fixed_in":9},{"ecosystem":455,"name":549,"vendor":457,"product":568,"cpe_part":9,"purl_type":459,"purl_namespace":457,"purl_name":568,"source":9,"versions":569},"lttng-modules&distro=SUSE OpenStack Cloud 7",[570],{"version":553,"is_range":463,"range_type":464,"version_start":9,"version_start_type":9,"version_end":554,"version_end_type":466,"fixed_in":9}]