1
Candidate: CVE-2018-7755
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7755
5
https://lkml.org/lkml/2018/3/7/1116
7
An issue was discovered in the fd_locked_ioctl function in
8
drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy
9
driver will copy a kernel pointer to user memory in response to the
10
FDGETPRM ioctl. An attacker can send the FDGETPRM ioctl and use the
11
obtained kernel pointer to discover the location of kernel code and data
12
and bypass kernel security protections such as KASLR.
14
It was discovered that an information leak vulnerability existed in
15
the floppy driver in the Linux kernel. A local attacker could use
16
this to expose sensitive information (kernel memory).
18
sbeattie> drivers/block/floppy.c::fd_locked_ioctl()
19
apw> the above patch mirrors the modifications from the compat path
20
apw> though leaving the name as per the user. Not progressing upstream.
27
break-fix: - local-2018-7755-1
28
upstream_linux: needed
29
precise/esm_linux: ignored (was needs-triage ESM criteria)
30
trusty_linux: pending (3.13.0-153.203)
31
xenial_linux: pending (4.4.0-130.156)
32
artful_linux: pending (4.13.0-46.51)
33
bionic_linux: pending (4.15.0-24.26)
34
devel_linux: pending (4.15.0-24.26)
36
Patches_linux-ti-omap4:
37
upstream_linux-ti-omap4: needed
38
precise/esm_linux-ti-omap4: DNE
39
trusty_linux-ti-omap4: DNE
40
xenial_linux-ti-omap4: DNE
41
artful_linux-ti-omap4: DNE
42
bionic_linux-ti-omap4: DNE
43
devel_linux-ti-omap4: DNE
45
Patches_linux-linaro-omap:
46
upstream_linux-linaro-omap: needed
47
precise/esm_linux-linaro-omap: DNE
48
trusty_linux-linaro-omap: DNE
49
xenial_linux-linaro-omap: DNE
50
artful_linux-linaro-omap: DNE
51
bionic_linux-linaro-omap: DNE
52
devel_linux-linaro-omap: DNE
54
Patches_linux-linaro-shared:
55
upstream_linux-linaro-shared: needed
56
precise/esm_linux-linaro-shared: DNE
57
trusty_linux-linaro-shared: DNE
58
xenial_linux-linaro-shared: DNE
59
artful_linux-linaro-shared: DNE
60
bionic_linux-linaro-shared: DNE
61
devel_linux-linaro-shared: DNE
63
Patches_linux-linaro-vexpress:
64
upstream_linux-linaro-vexpress: needed
65
precise/esm_linux-linaro-vexpress: DNE
66
trusty_linux-linaro-vexpress: DNE
67
xenial_linux-linaro-vexpress: DNE
68
artful_linux-linaro-vexpress: DNE
69
bionic_linux-linaro-vexpress: DNE
70
devel_linux-linaro-vexpress: DNE
72
Patches_linux-qcm-msm:
73
upstream_linux-qcm-msm: needed
74
precise/esm_linux-qcm-msm: DNE
75
trusty_linux-qcm-msm: DNE
76
xenial_linux-qcm-msm: DNE
77
artful_linux-qcm-msm: DNE
78
bionic_linux-qcm-msm: DNE
79
devel_linux-qcm-msm: DNE
81
Tags_linux-armadaxp: not-ue
82
Patches_linux-armadaxp:
83
upstream_linux-armadaxp: needed
84
precise/esm_linux-armadaxp: DNE
85
trusty_linux-armadaxp: DNE
86
xenial_linux-armadaxp: DNE
87
artful_linux-armadaxp: DNE
88
bionic_linux-armadaxp: DNE
89
devel_linux-armadaxp: DNE
91
Tags_linux-lts-quantal: not-ue
92
Patches_linux-lts-quantal: DNE
93
upstream_linux-lts-quantal: needed
94
precise/esm_linux-lts-quantal: ignored (end-of-life)
95
trusty_linux-lts-quantal: DNE
96
xenial_linux-lts-quantal: DNE
97
artful_linux-lts-quantal: DNE
98
bionic_linux-lts-quantal: DNE
99
devel_linux-lts-quantal: DNE
101
Patches_linux-lts-raring:
102
upstream_linux-lts-raring: needed
103
precise/esm_linux-lts-raring: ignored (end-of-life)
104
trusty_linux-lts-raring: DNE
105
xenial_linux-lts-raring: DNE
106
artful_linux-lts-raring: DNE
107
bionic_linux-lts-raring: DNE
108
devel_linux-lts-raring: DNE
110
Tags_linux-lts-saucy: not-ue
111
Patches_linux-lts-saucy:
112
upstream_linux-lts-saucy: needed
113
precise/esm_linux-lts-saucy: ignored (end-of-life)
114
trusty_linux-lts-saucy: DNE
115
xenial_linux-lts-saucy: DNE
116
artful_linux-lts-saucy: DNE
117
bionic_linux-lts-saucy: DNE
118
devel_linux-lts-saucy: DNE
120
Patches_linux-lts-trusty:
121
upstream_linux-lts-trusty: needed
122
precise/esm_linux-lts-trusty: ignored (was needed ESM criteria)
123
trusty_linux-lts-trusty: DNE
124
xenial_linux-lts-trusty: DNE
125
artful_linux-lts-trusty: DNE
126
bionic_linux-lts-trusty: DNE
127
devel_linux-lts-trusty: DNE
129
Patches_linux-goldfish:
130
upstream_linux-goldfish: needed
131
precise/esm_linux-goldfish: DNE
132
trusty_linux-goldfish: ignored (abandoned)
133
xenial_linux-goldfish: ignored (was needs-triage now end-of-life)
134
artful_linux-goldfish: DNE
135
bionic_linux-goldfish: DNE
136
devel_linux-goldfish: DNE
138
Patches_linux-grouper:
139
upstream_linux-grouper: needed
140
precise/esm_linux-grouper: DNE
141
trusty_linux-grouper: ignored (abandoned)
142
xenial_linux-grouper: DNE
143
artful_linux-grouper: DNE
144
bionic_linux-grouper: DNE
145
devel_linux-grouper: DNE
147
Patches_linux-maguro:
148
upstream_linux-maguro: needed
149
precise/esm_linux-maguro: DNE
150
trusty_linux-maguro: ignored (abandoned)
151
xenial_linux-maguro: DNE
152
artful_linux-maguro: DNE
153
bionic_linux-maguro: DNE
154
devel_linux-maguro: DNE
157
upstream_linux-mako: needed
158
precise/esm_linux-mako: DNE
159
trusty_linux-mako: ignored (abandoned)
160
xenial_linux-mako: ignored (abandoned)
161
artful_linux-mako: DNE
162
bionic_linux-mako: DNE
163
devel_linux-mako: DNE
166
upstream_linux-manta: needed
167
precise/esm_linux-manta: DNE
168
trusty_linux-manta: ignored (abandoned)
169
xenial_linux-manta: DNE
170
artful_linux-manta: DNE
171
bionic_linux-manta: DNE
172
devel_linux-manta: DNE
175
upstream_linux-flo: needed
176
precise/esm_linux-flo: DNE
177
trusty_linux-flo: ignored (abandoned)
178
xenial_linux-flo: ignored (abandoned)
179
artful_linux-flo: DNE
180
bionic_linux-flo: DNE
183
Patches_linux-raspi2:
184
upstream_linux-raspi2: needed
185
precise/esm_linux-raspi2: DNE
186
trusty_linux-raspi2: DNE
187
xenial_linux-raspi2: pending (4.4.0-1092.100)
188
artful_linux-raspi2: pending (4.13.0-1023.24)
189
bionic_linux-raspi2: pending (4.15.0-1013.14)
190
devel_linux-raspi2: needed
192
Patches_linux-lts-utopic:
193
upstream_linux-lts-utopic: needed
194
precise/esm_linux-lts-utopic: DNE
195
trusty_linux-lts-utopic: ignored (end-of-life)
196
xenial_linux-lts-utopic: DNE
197
artful_linux-lts-utopic: DNE
198
bionic_linux-lts-utopic: DNE
199
devel_linux-lts-utopic: DNE
201
Patches_linux-lts-vivid:
202
upstream_linux-lts-vivid: needed
203
precise/esm_linux-lts-vivid: DNE
204
trusty_linux-lts-vivid: ignored (was needs-triage now end-of-life)
205
xenial_linux-lts-vivid: DNE
206
artful_linux-lts-vivid: DNE
207
bionic_linux-lts-vivid: DNE
208
devel_linux-lts-vivid: DNE
210
Patches_linux-lts-wily:
211
upstream_linux-lts-wily: needed
212
precise/esm_linux-lts-wily: DNE
213
trusty_linux-lts-wily: ignored (end-of-life)
214
xenial_linux-lts-wily: DNE
215
artful_linux-lts-wily: DNE
216
bionic_linux-lts-wily: DNE
217
devel_linux-lts-wily: DNE
219
Patches_linux-krillin:
220
product_linux-krillin: ignored (was needs-triage now end-of-life)
222
Patches_linux-vegetahd:
223
product_linux-vegetahd: ignored (was needs-triage now end-of-life)
225
Patches_linux-lts-xenial:
226
upstream_linux-lts-xenial: needed
227
precise/esm_linux-lts-xenial: DNE
228
trusty_linux-lts-xenial: pending (4.4.0-130.156~14.04.1)
229
xenial_linux-lts-xenial: DNE
230
artful_linux-lts-xenial: DNE
231
bionic_linux-lts-xenial: DNE
232
devel_linux-lts-xenial: DNE
234
Patches_linux-snapdragon:
235
upstream_linux-snapdragon: needed
236
precise/esm_linux-snapdragon: DNE
237
trusty_linux-snapdragon: DNE
238
xenial_linux-snapdragon: pending (4.4.0-1095.100)
239
artful_linux-snapdragon: pending (4.4.0-1095.100)
240
bionic_linux-snapdragon: DNE
241
devel_linux-snapdragon: DNE
244
upstream_linux-aws: needed
245
precise/esm_linux-aws: DNE
246
trusty_linux-aws: pending (4.4.0-1024.25)
247
xenial_linux-aws: pending (4.4.0-1062.71)
248
artful_linux-aws: DNE
249
bionic_linux-aws: pending (4.15.0-1011.11)
250
devel_linux-aws: pending (4.15.0-1011.11)
253
upstream_linux-hwe: needed
254
precise/esm_linux-hwe: DNE
255
trusty_linux-hwe: DNE
256
xenial_linux-hwe: pending (4.15.0-24.26~16.04.1)
257
artful_linux-hwe: DNE
258
bionic_linux-hwe: DNE
261
Patches_linux-hwe-edge:
262
upstream_linux-hwe-edge: needed
263
precise/esm_linux-hwe-edge: DNE
264
trusty_linux-hwe-edge: DNE
265
xenial_linux-hwe-edge: needed
266
artful_linux-hwe-edge: DNE
267
bionic_linux-hwe-edge: DNE
268
devel_linux-hwe-edge: DNE
271
upstream_linux-gke: needed
272
precise/esm_linux-gke: DNE
273
trusty_linux-gke: DNE
274
xenial_linux-gke: ignored (was needs-triage now end-of-life)
275
artful_linux-gke: DNE
276
bionic_linux-gke: DNE
280
upstream_linux-azure: needed
281
precise/esm_linux-azure: DNE
282
trusty_linux-azure: DNE
283
xenial_linux-azure: pending (4.15.0-1014.14~16.04.1)
284
artful_linux-azure: DNE
285
bionic_linux-azure: pending (4.15.0-1014.14)
286
devel_linux-azure: pending (4.15.0-1014.14)
289
upstream_linux-gcp: needed
290
precise/esm_linux-gcp: DNE
291
trusty_linux-gcp: DNE
292
xenial_linux-gcp: pending (4.13.0-1020.24)
293
artful_linux-gcp: DNE
294
bionic_linux-gcp: pending (4.15.0-1010.10)
295
devel_linux-gcp: pending (4.15.0-1010.10)
298
upstream_linux-kvm: needed
299
precise/esm_linux-kvm: DNE
300
trusty_linux-kvm: DNE
301
xenial_linux-kvm: pending (4.4.0-1029.34)
302
artful_linux-kvm: DNE
303
bionic_linux-kvm: pending (4.15.0-1012.12)
304
devel_linux-kvm: pending (4.15.0-1012.12)
306
Patches_linux-euclid:
307
upstream_linux-euclid: needed
308
precise/esm_linux-euclid: DNE
309
trusty_linux-euclid: DNE
310
xenial_linux-euclid: ignored (was needs-triage ESM criteria)
311
artful_linux-euclid: DNE
312
bionic_linux-euclid: DNE
313
devel_linux-euclid: DNE
316
upstream_linux-oem: needed
317
precise/esm_linux-oem: DNE
318
trusty_linux-oem: DNE
319
xenial_linux-oem: pending (4.13.0-1031.35)
320
artful_linux-oem: DNE
321
bionic_linux-oem: pending (4.15.0-1009.12)
322
devel_linux-oem: needed