Vulnerability CVE-2018-6554: Information
Description
Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket.
Severity: MEDIUM (5.5) Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
kernel-image-mp | sisyphus | 4.17.4-alt1 | 6.8.4-alt1 | ALT-PU-2018-1976-1 | 209498 | Fixed |
kernel-image-mp | p10 | 4.17.4-alt1 | 6.1.19-alt1 | ALT-PU-2018-1976-1 | 209498 | Fixed |
kernel-image-mp | p9 | 4.17.4-alt1 | 5.12.16-alt1 | ALT-PU-2018-1976-1 | 209498 | Fixed |
kernel-image-mp | c9f2 | 4.17.4-alt1 | 5.7.16-alt1 | ALT-PU-2018-1976-1 | 209498 | Fixed |
kernel-image-std-def | sisyphus | 4.14.70-alt1 | 6.1.87-alt1 | ALT-PU-2018-2338-1 | 213109 | Fixed |
kernel-image-std-def | p10 | 4.14.70-alt1 | 5.10.213-alt1 | ALT-PU-2018-2338-1 | 213109 | Fixed |
kernel-image-std-def | p9 | 4.14.70-alt1 | 5.4.274-alt1 | ALT-PU-2018-2338-1 | 213109 | Fixed |
kernel-image-std-def | p8 | 4.9.127-alt0.M80P.1 | 4.9.337-alt0.M80P.1 | ALT-PU-2018-2358-1 | 213117 | Fixed |
kernel-image-std-def | c9f2 | 4.14.70-alt1 | 5.10.214-alt0.c9f.2 | ALT-PU-2018-2338-1 | 213109 | Fixed |
kernel-image-std-def | c7 | 4.4.183-alt0.M70C.1 | 4.4.277-alt0.M70C.1 | ALT-PU-2019-2175-1 | 233233 | Fixed |
kernel-image-std-pae | p8 | 4.4.157-alt0.M80P.1 | 4.4.159-alt0.M80P.1 | ALT-PU-2018-2368-1 | 213374 | Fixed |
kernel-image-std-pae | c9f2 | 4.4.156-alt1 | 4.19.72-alt1 | ALT-PU-2018-2337-1 | 213116 | Fixed |
kernel-image-un-def | sisyphus | 4.17.4-alt1 | 6.6.28-alt1 | ALT-PU-2018-1971-1 | 208675 | Fixed |
kernel-image-un-def | p10 | 4.17.4-alt1 | 6.1.85-alt1 | ALT-PU-2018-1971-1 | 208675 | Fixed |
kernel-image-un-def | p9 | 4.17.4-alt1 | 5.10.215-alt1 | ALT-PU-2018-1971-1 | 208675 | Fixed |
kernel-image-un-def | p8 | 4.14.70-alt0.M80P.1 | 4.19.310-alt0.M80P.1 | ALT-PU-2018-2357-1 | 213115 | Fixed |
kernel-image-un-def | c10f1 | 4.17.4-alt1 | 6.1.85-alt0.c10f.1 | ALT-PU-2018-1971-1 | 208675 | Fixed |
kernel-image-un-def | c9f2 | 4.17.4-alt1 | 5.10.29-alt2 | ALT-PU-2018-1971-1 | 208675 | Fixed |
kernel-image-un-def | c7 | 4.9.277-alt0.M70C.1 | 4.9.277-alt0.M70C.1 | ALT-PU-2021-3032-1 | 281292 | Fixed |
usbip | sisyphus | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-1798-1 | 320453 | Fixed |
usbip | sisyphus_e2k | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-7452-1 | - | Fixed |
usbip | p10 | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-1903-1 | 320461 | Fixed |
usbip | p10_e2k | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-7498-1 | - | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
[stable] 20180904 [PATCH 1/2] irda: Fix memory leak caused by repeated binds of irda socket |
|
[stable] 20180904 [PATCH 1/2] irda: Fix memory leak caused by repeated binds of irda socket |
|
105302 |
|
DSA-4308 |
|
USN-3777-2 |
|
USN-3777-1 |
|
USN-3776-2 |
|
USN-3776-1 |
|
USN-3775-2 |
|
USN-3775-1 |
|
[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update |
|
USN-3777-3 |
|
[debian-lts-announce] 20190315 [SECURITY] [DLA 1715-1] linux-4.9 security update |
|