Wind River Support Network

HomeDefectsLIN10-4190

Fixed

LIN10-4190 : Security Advisory - linux - CVE-2018-10853

Created: Jun 29, 2018 Updated: Dec 3, 2018

Resolved Date: Aug 9, 2018

Found In Version: 10.17.41.1

Fix Version: 10.17.41.10

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Kernel

Description

A flaw was found in Linux Kernel KVM versions greater than and including 4.10. In which certain instructions such as sgdt/sidt call segmented_write_std doesn't propagate access correctly. As such, during userspace induced exception, the guest can incorrectly assume that the exception happened in the kernel and panic. 

https://nvd.nist.gov/vuln/detail/CVE-2018-10853 

Fix:
https://git.kernel.org/linus/3c9fa24ca7c9c47605672916491f79e8ccacb9e6

Other Downloads

Wind River Linux LTS 10.17.41.10
Wind River Linux LTS 10.17.41.11
Wind River Linux LTS 10.17.41.12
Wind River Linux LTS 10.17.41.13
Wind River Linux LTS 10.17.41.14
Wind River Linux LTS 10.17.41.15
Wind River Linux LTS 10.17.41.16
Wind River Linux LTS 10.17.41.17
Wind River Linux LTS 10.17.41.18
Wind River Linux LTS 10.17.41.20
Wind River Linux LTS 10.17.41.21
Wind River Linux LTS 10.17.41.22
Wind River Linux LTS 10.17.41.23
Wind River Linux LTS 10.17.41.24
Wind River Linux LTS 10.17.41.25
Wind River Linux LTS 10.17.41.26
Wind River Linux LTS 10.17.41.27

CVEs

CVE-2018-10853