Candidate: CVE-2018-9385
PublicDate: 2018-11-06 17:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9385
 https://patchwork.kernel.org/patch/10175611/
Description:
 In driver_override_store of bus.c, there is a possible out of bounds write
 due to an incorrect bounds check. This could lead to local escalation of
 privilege with System execution privileges needed. User interaction is not
 needed for exploitation. Product: Android Versions: Android kernel Android
 ID: A-74128061 References: Upstream kernel.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.suse.com/show_bug.cgi?id=1100491
Priority: low
Discovered-by:
Assigned-to: 
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_linux:
 break-fix: 3cf385713460eb2bb4cb7ceb8ed89833b00b594b d2ffed5185df9d8d9ccd150e4340e3b6f96a8381
 break-fix: 3cf385713460eb2bb4cb7ceb8ed89833b00b594b 4efe874aace57dba967624ce1c48322da2447b75
 break-fix: 3cf385713460eb2bb4cb7ceb8ed89833b00b594b bf563b01c2895a4bfd1a29cc5abc67fe706ecffd
upstream_linux: released (4.17~rc3)
precise/esm_linux: not-affected
trusty_linux: not-affected
trusty/esm_linux: not-affected
xenial_linux: released (4.4.0-128.154)
esm-infra/xenial_linux: released (4.4.0-128.154)
bionic_linux: released (4.15.0-33.36)
cosmic_linux: not-affected (4.17.0-6.7)
devel_linux: not-affected (4.18.0-10.11)

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: released (4.17~rc3)
precise/esm_linux-lts-trusty: not-affected
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
bionic_linux-lts-trusty: DNE
cosmic_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-goldfish:
upstream_linux-goldfish: released (4.17~rc3)
precise/esm_linux-goldfish: DNE
trusty_linux-goldfish: ignored (abandoned)
trusty/esm_linux-goldfish: DNE (trusty was ignored [abandoned])
xenial_linux-goldfish: ignored (end-of-life)
bionic_linux-goldfish: DNE
cosmic_linux-goldfish: DNE
devel_linux-goldfish: DNE

Patches_linux-grouper:
upstream_linux-grouper: released (4.17~rc3)
precise/esm_linux-grouper: DNE
trusty_linux-grouper: ignored (abandoned)
trusty/esm_linux-grouper: DNE (trusty was ignored [abandoned])
xenial_linux-grouper: DNE
bionic_linux-grouper: DNE
cosmic_linux-grouper: DNE
devel_linux-grouper: DNE

Patches_linux-maguro:
upstream_linux-maguro: released (4.17~rc3)
precise/esm_linux-maguro: DNE
trusty_linux-maguro: ignored (abandoned)
trusty/esm_linux-maguro: DNE (trusty was ignored [abandoned])
xenial_linux-maguro: DNE
bionic_linux-maguro: DNE
cosmic_linux-maguro: DNE
devel_linux-maguro: DNE

Patches_linux-mako:
upstream_linux-mako: released (4.17~rc3)
precise/esm_linux-mako: DNE
trusty_linux-mako: ignored (abandoned)
trusty/esm_linux-mako: DNE (trusty was ignored [abandoned])
xenial_linux-mako: ignored (abandoned)
bionic_linux-mako: DNE
cosmic_linux-mako: DNE
devel_linux-mako: DNE

Patches_linux-manta:
upstream_linux-manta: released (4.17~rc3)
precise/esm_linux-manta: DNE
trusty_linux-manta: ignored (abandoned)
trusty/esm_linux-manta: DNE (trusty was ignored [abandoned])
xenial_linux-manta: DNE
bionic_linux-manta: DNE
cosmic_linux-manta: DNE
devel_linux-manta: DNE

Patches_linux-flo:
upstream_linux-flo: released (4.17~rc3)
precise/esm_linux-flo: DNE
trusty_linux-flo: ignored (abandoned)
trusty/esm_linux-flo: DNE (trusty was ignored [abandoned])
xenial_linux-flo: ignored (abandoned)
bionic_linux-flo: DNE
cosmic_linux-flo: DNE
devel_linux-flo: DNE

Patches_linux-raspi2:
upstream_linux-raspi2: released (4.17~rc3)
precise/esm_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
xenial_linux-raspi2: released (4.4.0-1091.99)
bionic_linux-raspi2: released (4.15.0-1021.23)
cosmic_linux-raspi2: not-affected (4.15.0-1021.23)
devel_linux-raspi2: not-affected (4.18.0-1005.7)

Patches_linux-lts-utopic:
upstream_linux-lts-utopic: released (4.17~rc3)
precise/esm_linux-lts-utopic: DNE
trusty_linux-lts-utopic: ignored (out of standard support)
trusty/esm_linux-lts-utopic: DNE (trusty was ignored [out of standard support])
xenial_linux-lts-utopic: DNE
bionic_linux-lts-utopic: DNE
cosmic_linux-lts-utopic: DNE
devel_linux-lts-utopic: DNE

Patches_linux-lts-vivid:
upstream_linux-lts-vivid: released (4.17~rc3)
precise/esm_linux-lts-vivid: DNE
trusty_linux-lts-vivid: ignored (out of standard support)
trusty/esm_linux-lts-vivid: DNE (trusty was ignored [out of standard support])
xenial_linux-lts-vivid: DNE
bionic_linux-lts-vivid: DNE
cosmic_linux-lts-vivid: DNE
devel_linux-lts-vivid: DNE

Patches_linux-lts-wily:
upstream_linux-lts-wily: released (4.17~rc3)
precise/esm_linux-lts-wily: DNE
trusty_linux-lts-wily: ignored (out of standard support)
trusty/esm_linux-lts-wily: DNE (trusty was ignored [out of standard support])
xenial_linux-lts-wily: DNE
bionic_linux-lts-wily: DNE
cosmic_linux-lts-wily: DNE
devel_linux-lts-wily: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: released (4.17~rc3)
precise/esm_linux-lts-xenial: DNE
trusty_linux-lts-xenial: released (4.4.0-128.154~14.04.1)
trusty/esm_linux-lts-xenial: released (4.4.0-128.154~14.04.1)
xenial_linux-lts-xenial: DNE
bionic_linux-lts-xenial: DNE
cosmic_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-snapdragon:
upstream_linux-snapdragon: released (4.17~rc3)
precise/esm_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
xenial_linux-snapdragon: released (4.4.0-1094.99)
bionic_linux-snapdragon: not-affected
cosmic_linux-snapdragon: DNE
devel_linux-snapdragon: DNE

Patches_linux-aws:
upstream_linux-aws: released (4.17~rc3)
precise/esm_linux-aws: DNE
trusty_linux-aws: released (4.4.0-1023.23)
trusty/esm_linux-aws: released (4.4.0-1023.23)
xenial_linux-aws: released (4.4.0-1061.70)
esm-infra/xenial_linux-aws: released (4.4.0-1061.70)
bionic_linux-aws: released (4.15.0-1020.20)
cosmic_linux-aws: not-affected (4.15.0-1020.20)
devel_linux-aws: not-affected (4.18.0-1002.3)

Patches_linux-hwe:
upstream_linux-hwe: released (4.17~rc3)
precise/esm_linux-hwe: DNE
trusty_linux-hwe: DNE
trusty/esm_linux-hwe: DNE
xenial_linux-hwe: released (4.15.0-33.36~16.04.1)
esm-infra/xenial_linux-hwe: released (4.15.0-33.36~16.04.1)
bionic_linux-hwe: not-affected
cosmic_linux-hwe: DNE
devel_linux-hwe: DNE

Patches_linux-hwe-edge:
upstream_linux-hwe-edge: released (4.17~rc3)
precise/esm_linux-hwe-edge: DNE
trusty_linux-hwe-edge: DNE
trusty/esm_linux-hwe-edge: DNE
xenial_linux-hwe-edge: released (4.15.0-33.36~16.04.1)
esm-infra/xenial_linux-hwe-edge: released (4.15.0-33.36~16.04.1)
bionic_linux-hwe-edge: not-affected (4.18.0-11.12~18.04.1)
cosmic_linux-hwe-edge: DNE
devel_linux-hwe-edge: DNE

Patches_linux-gke:
upstream_linux-gke: released (4.17~rc3)
precise/esm_linux-gke: DNE
trusty_linux-gke: DNE
trusty/esm_linux-gke: DNE
xenial_linux-gke: ignored (end-of-life)
bionic_linux-gke: DNE
cosmic_linux-gke: DNE
devel_linux-gke: DNE

Patches_linux-azure:
upstream_linux-azure: released (4.17~rc3)
precise/esm_linux-azure: DNE
trusty_linux-azure: not-affected (4.15.0-1023.24~14.04.1)
trusty/esm_linux-azure: not-affected (4.15.0-1023.24~14.04.1)
xenial_linux-azure: released (4.15.0-1022.22~16.04.1)
esm-infra/xenial_linux-azure: released (4.15.0-1022.22~16.04.1)
bionic_linux-azure: released (4.15.0-1022.23)
cosmic_linux-azure: not-affected (4.15.0-1023.24)
devel_linux-azure: not-affected (4.18.0-1003.3)

Patches_linux-azure-edge:
upstream_linux-azure-edge: released (4.17~rc3)
precise/esm_linux-azure-edge: DNE
trusty_linux-azure-edge: DNE
trusty/esm_linux-azure-edge: DNE
xenial_linux-azure-edge: released (4.15.0-1022.23)
bionic_linux-azure-edge: not-affected (4.18.0-1004.4~18.04.1)
cosmic_linux-azure-edge: DNE
devel_linux-azure-edge: DNE

Patches_linux-gcp:
upstream_linux-gcp: released (4.17~rc3)
precise/esm_linux-gcp: DNE
trusty_linux-gcp: DNE
trusty/esm_linux-gcp: DNE
xenial_linux-gcp: released (4.15.0-1018.19~16.04.2)
esm-infra/xenial_linux-gcp: released (4.15.0-1018.19~16.04.2)
bionic_linux-gcp: released (4.15.0-1018.19)
cosmic_linux-gcp: not-affected (4.15.0-1018.19)
devel_linux-gcp: not-affected (4.18.0-1002.3)

Patches_linux-kvm:
upstream_linux-kvm: released (4.17~rc3)
precise/esm_linux-kvm: DNE
trusty_linux-kvm: DNE
trusty/esm_linux-kvm: DNE
xenial_linux-kvm: released (4.4.0-1027.32)
esm-infra/xenial_linux-kvm: released (4.4.0-1027.32)
bionic_linux-kvm: released (4.15.0-1020.20)
cosmic_linux-kvm: not-affected (4.15.0-1020.20)
devel_linux-kvm: not-affected (4.18.0-1003.3)

Patches_linux-euclid:
upstream_linux-euclid: released (4.17~rc3)
precise/esm_linux-euclid: DNE
trusty_linux-euclid: DNE
trusty/esm_linux-euclid: DNE
xenial_linux-euclid: ignored (was needed ESM criteria)
bionic_linux-euclid: DNE
cosmic_linux-euclid: DNE
devel_linux-euclid: DNE

Patches_linux-oem:
upstream_linux-oem: released (4.17~rc3)
precise/esm_linux-oem: DNE
trusty_linux-oem: DNE
trusty/esm_linux-oem: DNE
xenial_linux-oem: ignored (was needs-triage now end-of-life)
bionic_linux-oem: released (4.15.0-1017.20)
cosmic_linux-oem: not-affected (4.15.0-1017.20)
devel_linux-oem: not-affected (4.15.0-1021.24)