PublicDateAtUSN: 2018-08-02 Candidate: CVE-2018-9363 PublicDate: 2018-11-06 17:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9363 https://source.android.com/security/bulletin/2018-06-01 https://github.com/LineageOS/android_kernel_samsung_exynos5420/commit/22db4bea2a0af7c0e188533282ce7e42323b6e58 https://ubuntu.com/security/notices/USN-3797-1 https://ubuntu.com/security/notices/USN-3797-2 https://ubuntu.com/security/notices/USN-3820-1 https://ubuntu.com/security/notices/USN-3820-2 https://ubuntu.com/security/notices/USN-3820-3 https://ubuntu.com/security/notices/USN-3822-1 https://ubuntu.com/security/notices/USN-3822-2 Description: In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-65853588 References: Upstream kernel. Ubuntu-Description: It was discovered that an integer overflow existed in the HID Bluetooth implementation in the Linux kernel that could lead to a buffer overwrite. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Notes: sbeattie> net/bluetooth/hidp/core.c::hidp_process_report() Bugs: Priority: medium Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [8.4 HIGH] Patches_linux: break-fix: a4b1b5877b514b276f0f31efe02388a9c2836728 7992c18810e568b95c869b227137a2215702a805 upstream_linux: released (4.19~rc1) precise/esm_linux: not-affected (3.0.0-12.20) trusty_linux: released (3.13.0-162.212) trusty/esm_linux: released (3.13.0-162.212) xenial_linux: released (4.4.0-138.164) esm-infra/xenial_linux: released (4.4.0-138.164) bionic_linux: released (4.15.0-39.42) cosmic_linux: not-affected (4.17.0-9.10) devel_linux: not-affected (4.18.0-10.11) Patches_linux-lts-trusty: upstream_linux-lts-trusty: released (4.19~rc1) precise/esm_linux-lts-trusty: released (3.13.0-162.212~precise1) trusty_linux-lts-trusty: DNE trusty/esm_linux-lts-trusty: DNE xenial_linux-lts-trusty: DNE bionic_linux-lts-trusty: DNE cosmic_linux-lts-trusty: DNE devel_linux-lts-trusty: DNE Patches_linux-goldfish: upstream_linux-goldfish: released (4.19~rc1) precise/esm_linux-goldfish: DNE trusty_linux-goldfish: ignored (abandoned) trusty/esm_linux-goldfish: DNE (trusty was ignored [abandoned]) xenial_linux-goldfish: ignored (end-of-life) bionic_linux-goldfish: DNE cosmic_linux-goldfish: DNE devel_linux-goldfish: DNE Patches_linux-grouper: upstream_linux-grouper: released (4.19~rc1) precise/esm_linux-grouper: DNE trusty_linux-grouper: ignored (abandoned) trusty/esm_linux-grouper: DNE (trusty was ignored [abandoned]) xenial_linux-grouper: DNE bionic_linux-grouper: DNE cosmic_linux-grouper: DNE devel_linux-grouper: DNE Patches_linux-maguro: upstream_linux-maguro: released (4.19~rc1) precise/esm_linux-maguro: DNE trusty_linux-maguro: ignored (abandoned) trusty/esm_linux-maguro: DNE (trusty was ignored [abandoned]) xenial_linux-maguro: DNE bionic_linux-maguro: DNE cosmic_linux-maguro: DNE devel_linux-maguro: DNE Patches_linux-mako: upstream_linux-mako: released (4.19~rc1) precise/esm_linux-mako: DNE trusty_linux-mako: ignored (abandoned) trusty/esm_linux-mako: DNE (trusty was ignored [abandoned]) xenial_linux-mako: ignored (abandoned) bionic_linux-mako: DNE cosmic_linux-mako: DNE devel_linux-mako: DNE Patches_linux-manta: upstream_linux-manta: released (4.19~rc1) precise/esm_linux-manta: DNE trusty_linux-manta: ignored (abandoned) trusty/esm_linux-manta: DNE (trusty was ignored [abandoned]) xenial_linux-manta: DNE bionic_linux-manta: DNE cosmic_linux-manta: DNE devel_linux-manta: DNE Patches_linux-flo: upstream_linux-flo: released (4.19~rc1) precise/esm_linux-flo: DNE trusty_linux-flo: ignored (abandoned) trusty/esm_linux-flo: DNE (trusty was ignored [abandoned]) xenial_linux-flo: ignored (abandoned) bionic_linux-flo: DNE cosmic_linux-flo: DNE devel_linux-flo: DNE Patches_linux-raspi2: upstream_linux-raspi2: released (4.19~rc1) precise/esm_linux-raspi2: DNE trusty_linux-raspi2: DNE trusty/esm_linux-raspi2: DNE xenial_linux-raspi2: released (4.4.0-1099.107) bionic_linux-raspi2: released (4.15.0-1028.30) cosmic_linux-raspi2: not-affected (4.18.0-1004.6) devel_linux-raspi2: not-affected (4.18.0-1005.7) Patches_linux-lts-utopic: upstream_linux-lts-utopic: released (4.19~rc1) precise/esm_linux-lts-utopic: DNE trusty_linux-lts-utopic: ignored (out of standard support) trusty/esm_linux-lts-utopic: DNE (trusty was ignored [out of standard support]) xenial_linux-lts-utopic: DNE bionic_linux-lts-utopic: DNE cosmic_linux-lts-utopic: DNE devel_linux-lts-utopic: DNE Patches_linux-lts-vivid: upstream_linux-lts-vivid: released (4.19~rc1) precise/esm_linux-lts-vivid: DNE trusty_linux-lts-vivid: ignored (out of standard support) trusty/esm_linux-lts-vivid: DNE (trusty was ignored [out of standard support]) xenial_linux-lts-vivid: DNE bionic_linux-lts-vivid: DNE cosmic_linux-lts-vivid: DNE devel_linux-lts-vivid: DNE Patches_linux-lts-wily: upstream_linux-lts-wily: released (4.19~rc1) precise/esm_linux-lts-wily: DNE trusty_linux-lts-wily: ignored (out of standard support) trusty/esm_linux-lts-wily: DNE (trusty was ignored [out of standard support]) xenial_linux-lts-wily: DNE bionic_linux-lts-wily: DNE cosmic_linux-lts-wily: DNE devel_linux-lts-wily: DNE Patches_linux-lts-xenial: upstream_linux-lts-xenial: released (4.19~rc1) precise/esm_linux-lts-xenial: DNE trusty_linux-lts-xenial: released (4.4.0-138.164~14.04.1) trusty/esm_linux-lts-xenial: released (4.4.0-138.164~14.04.1) xenial_linux-lts-xenial: DNE bionic_linux-lts-xenial: DNE cosmic_linux-lts-xenial: DNE devel_linux-lts-xenial: DNE Patches_linux-snapdragon: upstream_linux-snapdragon: released (4.19~rc1) precise/esm_linux-snapdragon: DNE trusty_linux-snapdragon: DNE trusty/esm_linux-snapdragon: DNE xenial_linux-snapdragon: released (4.4.0-1103.108) bionic_linux-snapdragon: not-affected cosmic_linux-snapdragon: DNE devel_linux-snapdragon: DNE Patches_linux-aws: upstream_linux-aws: released (4.19~rc1) precise/esm_linux-aws: DNE trusty_linux-aws: released (4.4.0-1032.35) trusty/esm_linux-aws: released (4.4.0-1032.35) xenial_linux-aws: released (4.4.0-1070.80) esm-infra/xenial_linux-aws: released (4.4.0-1070.80) bionic_linux-aws: released (4.15.0-1027.27) cosmic_linux-aws: not-affected (4.18.0-1002.3) devel_linux-aws: not-affected (4.18.0-1002.3) Patches_linux-hwe: upstream_linux-hwe: released (4.19~rc1) precise/esm_linux-hwe: DNE trusty_linux-hwe: DNE trusty/esm_linux-hwe: DNE xenial_linux-hwe: released (4.15.0-39.42~16.04.1) esm-infra/xenial_linux-hwe: released (4.15.0-39.42~16.04.1) bionic_linux-hwe: not-affected (4.18.0-12.13~18.04.2) cosmic_linux-hwe: DNE devel_linux-hwe: DNE Patches_linux-hwe-edge: upstream_linux-hwe-edge: released (4.19~rc1) precise/esm_linux-hwe-edge: DNE trusty_linux-hwe-edge: DNE trusty/esm_linux-hwe-edge: DNE xenial_linux-hwe-edge: released (4.15.0-39.42~16.04.1) esm-infra/xenial_linux-hwe-edge: released (4.15.0-39.42~16.04.1) bionic_linux-hwe-edge: not-affected (4.18.0-12.13~18.04.2) cosmic_linux-hwe-edge: DNE devel_linux-hwe-edge: DNE Patches_linux-gke: upstream_linux-gke: released (4.19~rc1) precise/esm_linux-gke: DNE trusty_linux-gke: DNE trusty/esm_linux-gke: DNE xenial_linux-gke: ignored (end-of-life) bionic_linux-gke: DNE cosmic_linux-gke: DNE devel_linux-gke: DNE Patches_linux-azure: upstream_linux-azure: released (4.19~rc1) precise/esm_linux-azure: DNE trusty_linux-azure: released (4.15.0-1031.32~14.04.1) trusty/esm_linux-azure: released (4.15.0-1031.32~14.04.1) xenial_linux-azure: released (4.15.0-1031.32~16.04.1) esm-infra/xenial_linux-azure: released (4.15.0-1031.32~16.04.1) bionic_linux-azure: released (4.15.0-1031.32) cosmic_linux-azure: not-affected (4.18.0-1003.3) devel_linux-azure: not-affected (4.18.0-1003.3) Patches_linux-azure-edge: upstream_linux-azure-edge: released (4.19~rc1) precise/esm_linux-azure-edge: DNE trusty_linux-azure-edge: DNE trusty/esm_linux-azure-edge: DNE xenial_linux-azure-edge: released (4.15.0-1031.32) bionic_linux-azure-edge: not-affected (4.18.0-1006.6~18.04.1) cosmic_linux-azure-edge: DNE devel_linux-azure-edge: DNE Patches_linux-gcp: upstream_linux-gcp: released (4.19~rc1) precise/esm_linux-gcp: DNE trusty_linux-gcp: DNE trusty/esm_linux-gcp: DNE xenial_linux-gcp: released (4.15.0-1024.25~16.04.2) esm-infra/xenial_linux-gcp: released (4.15.0-1024.25~16.04.2) bionic_linux-gcp: released (4.15.0-1024.25) cosmic_linux-gcp: not-affected (4.18.0-1002.3) devel_linux-gcp: not-affected (4.18.0-1002.3) Patches_linux-kvm: upstream_linux-kvm: released (4.19~rc1) precise/esm_linux-kvm: DNE trusty_linux-kvm: DNE trusty/esm_linux-kvm: DNE xenial_linux-kvm: released (4.4.0-1036.42) esm-infra/xenial_linux-kvm: released (4.4.0-1036.42) bionic_linux-kvm: released (4.15.0-1026.26) cosmic_linux-kvm: not-affected (4.18.0-1002.2) devel_linux-kvm: not-affected (4.18.0-1003.3) Patches_linux-euclid: upstream_linux-euclid: released (4.19~rc1) precise/esm_linux-euclid: DNE trusty_linux-euclid: DNE trusty/esm_linux-euclid: DNE xenial_linux-euclid: ignored (was needed ESM criteria) bionic_linux-euclid: DNE cosmic_linux-euclid: DNE devel_linux-euclid: DNE Patches_linux-oem: upstream_linux-oem: released (4.19~rc1) precise/esm_linux-oem: DNE trusty_linux-oem: DNE trusty/esm_linux-oem: DNE xenial_linux-oem: ignored (was needed now end-of-life) bionic_linux-oem: released (4.15.0-1026.31) cosmic_linux-oem: released (4.15.0-1026.31) devel_linux-oem: released (4.15.0.1026.31)