PublicDateAtUSN: 2018-11-06
Candidate: CVE-2018-9516
PublicDate: 2018-11-06 17:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9516
 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=717adfdaf14704fd3ec7fa2c04520c0723247eac
 https://source.android.com/security/bulletin/pixel/2018-09-01
 https://ubuntu.com/security/notices/USN-3871-1
 https://ubuntu.com/security/notices/USN-3871-3
 https://ubuntu.com/security/notices/USN-3871-4
 https://ubuntu.com/security/notices/USN-3871-5
Description:
 In hid_debug_events_read of drivers/hid/hid-debug.c, there is a possible
 out of bounds write due to a missing bounds check. This could lead to local
 escalation of privilege with System execution privileges needed. User
 interaction is not needed for exploitation. Product: Android Versions:
 Android kernel Android ID: A-71361580.
Ubuntu-Description:
 It was discovered that the debug interface for the Linux kernel's HID
 subsystem did not properly perform bounds checking in some situations. An
 attacker with access to debugfs could use this to cause a denial of service
 or possibly gain additional privileges.
Notes:
 tyhicks> HID debug events are exposed via debugfs which is only accessible by
  the root user in Ubuntu
Bugs:
Priority: negligible
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [7.8 HIGH]

Patches_linux:
 break-fix: cd667ce24796700e1a0e6e7528efc61c96ff832e 717adfdaf14704fd3ec7fa2c04520c0723247eac
upstream_linux: released (4.18~rc5)
precise/esm_linux: ignored (was needed ESM criteria)
trusty_linux: ignored (reached end-of-life)
trusty/esm_linux: ignored (was needed ESM criteria)
xenial_linux: released (4.4.0-134.160)
esm-infra/xenial_linux: released (4.4.0-134.160)
bionic_linux: released (4.15.0-44.47)
cosmic_linux: not-affected (4.17.0-6.7)
disco_linux: not-affected (4.18.0-10.11)
devel_linux: not-affected (5.0.0-13.14)

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: released (4.18~rc5)
precise/esm_linux-lts-trusty: ignored (was needed ESM criteria)
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
bionic_linux-lts-trusty: DNE
cosmic_linux-lts-trusty: DNE
disco_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-goldfish:
upstream_linux-goldfish: released (4.18~rc5)
precise/esm_linux-goldfish: DNE
trusty_linux-goldfish: ignored (abandoned)
trusty/esm_linux-goldfish: DNE (trusty was ignored [abandoned])
xenial_linux-goldfish: ignored (end-of-life)
bionic_linux-goldfish: DNE
cosmic_linux-goldfish: DNE
disco_linux-goldfish: DNE
devel_linux-goldfish: DNE

Patches_linux-grouper:
upstream_linux-grouper: released (4.18~rc5)
precise/esm_linux-grouper: DNE
trusty_linux-grouper: ignored (abandoned)
trusty/esm_linux-grouper: DNE (trusty was ignored [abandoned])
xenial_linux-grouper: DNE
bionic_linux-grouper: DNE
cosmic_linux-grouper: DNE
disco_linux-grouper: DNE
devel_linux-grouper: DNE

Patches_linux-maguro:
upstream_linux-maguro: released (4.18~rc5)
precise/esm_linux-maguro: DNE
trusty_linux-maguro: ignored (abandoned)
trusty/esm_linux-maguro: DNE (trusty was ignored [abandoned])
xenial_linux-maguro: DNE
bionic_linux-maguro: DNE
cosmic_linux-maguro: DNE
disco_linux-maguro: DNE
devel_linux-maguro: DNE

Patches_linux-mako:
upstream_linux-mako: released (4.18~rc5)
precise/esm_linux-mako: DNE
trusty_linux-mako: ignored (abandoned)
trusty/esm_linux-mako: DNE (trusty was ignored [abandoned])
xenial_linux-mako: ignored (abandoned)
bionic_linux-mako: DNE
cosmic_linux-mako: DNE
disco_linux-mako: DNE
devel_linux-mako: DNE

Patches_linux-manta:
upstream_linux-manta: released (4.18~rc5)
precise/esm_linux-manta: DNE
trusty_linux-manta: ignored (abandoned)
trusty/esm_linux-manta: DNE (trusty was ignored [abandoned])
xenial_linux-manta: DNE
bionic_linux-manta: DNE
cosmic_linux-manta: DNE
disco_linux-manta: DNE
devel_linux-manta: DNE

Patches_linux-flo:
upstream_linux-flo: released (4.18~rc5)
precise/esm_linux-flo: DNE
trusty_linux-flo: ignored (abandoned)
trusty/esm_linux-flo: DNE (trusty was ignored [abandoned])
xenial_linux-flo: ignored (abandoned)
bionic_linux-flo: DNE
cosmic_linux-flo: DNE
disco_linux-flo: DNE
devel_linux-flo: DNE

Patches_linux-raspi2:
upstream_linux-raspi2: released (4.18~rc5)
precise/esm_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
xenial_linux-raspi2: released (4.4.0-1095.103)
bionic_linux-raspi2: released (4.15.0-1031.33)
cosmic_linux-raspi2: not-affected (4.18.0-1004.6)
disco_linux-raspi2: not-affected (4.18.0-1005.7)
devel_linux-raspi2: not-affected (5.0.0-1006.6)

Patches_linux-lts-utopic:
upstream_linux-lts-utopic: released (4.18~rc5)
precise/esm_linux-lts-utopic: DNE
trusty_linux-lts-utopic: ignored (out of standard support)
trusty/esm_linux-lts-utopic: DNE (trusty was ignored [end-of-life])
xenial_linux-lts-utopic: DNE
bionic_linux-lts-utopic: DNE
cosmic_linux-lts-utopic: DNE
disco_linux-lts-utopic: DNE
devel_linux-lts-utopic: DNE

Patches_linux-lts-vivid:
upstream_linux-lts-vivid: released (4.18~rc5)
precise/esm_linux-lts-vivid: DNE
trusty_linux-lts-vivid: ignored (out of standard support)
trusty/esm_linux-lts-vivid: DNE (trusty was ignored [end-of-life])
xenial_linux-lts-vivid: DNE
bionic_linux-lts-vivid: DNE
cosmic_linux-lts-vivid: DNE
disco_linux-lts-vivid: DNE
devel_linux-lts-vivid: DNE

Patches_linux-lts-wily:
upstream_linux-lts-wily: released (4.18~rc5)
precise/esm_linux-lts-wily: DNE
trusty_linux-lts-wily: ignored (out of standard support)
trusty/esm_linux-lts-wily: DNE (trusty was ignored [end-of-life])
xenial_linux-lts-wily: DNE
bionic_linux-lts-wily: DNE
cosmic_linux-lts-wily: DNE
disco_linux-lts-wily: DNE
devel_linux-lts-wily: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: released (4.18~rc5)
precise/esm_linux-lts-xenial: DNE
trusty_linux-lts-xenial: released (4.4.0-134.160~14.04.1)
trusty/esm_linux-lts-xenial: released (4.4.0-134.160~14.04.1)
xenial_linux-lts-xenial: DNE
bionic_linux-lts-xenial: DNE
cosmic_linux-lts-xenial: DNE
disco_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-snapdragon:
upstream_linux-snapdragon: released (4.18~rc5)
precise/esm_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
xenial_linux-snapdragon: released (4.4.0-1099.104)
bionic_linux-snapdragon: released (4.15.0-1053.57)
cosmic_linux-snapdragon: DNE
disco_linux-snapdragon: not-affected (5.0.0-1010.10)
devel_linux-snapdragon: not-affected (5.0.0-1010.10)

Patches_linux-aws:
upstream_linux-aws: released (4.18~rc5)
precise/esm_linux-aws: DNE
trusty_linux-aws: released (4.4.0-1028.31)
trusty/esm_linux-aws: released (4.4.0-1028.31)
xenial_linux-aws: released (4.4.0-1066.76)
esm-infra/xenial_linux-aws: released (4.4.0-1066.76)
bionic_linux-aws: released (4.15.0-1032.34)
cosmic_linux-aws: not-affected (4.18.0-1002.3)
disco_linux-aws: not-affected (4.18.0-1002.3)
devel_linux-aws: not-affected (5.0.0-1004.4)

Patches_linux-hwe:
upstream_linux-hwe: released (4.18~rc5)
precise/esm_linux-hwe: DNE
trusty_linux-hwe: DNE
trusty/esm_linux-hwe: DNE
xenial_linux-hwe: released (4.15.0-45.48~16.04.1)
esm-infra/xenial_linux-hwe: released (4.15.0-45.48~16.04.1)
bionic_linux-hwe: not-affected (4.18.0-13.14~18.04.1)
cosmic_linux-hwe: DNE
disco_linux-hwe: DNE
devel_linux-hwe: DNE

Patches_linux-hwe-edge:
upstream_linux-hwe-edge: released (4.18~rc5)
precise/esm_linux-hwe-edge: DNE
trusty_linux-hwe-edge: DNE
trusty/esm_linux-hwe-edge: DNE
xenial_linux-hwe-edge: released (4.15.0-45.48~16.04.1)
esm-infra/xenial_linux-hwe-edge: released (4.15.0-45.48~16.04.1)
bionic_linux-hwe-edge: not-affected (5.0.0-15.16~18.04.1)
cosmic_linux-hwe-edge: DNE
disco_linux-hwe-edge: DNE
devel_linux-hwe-edge: DNE

Patches_linux-gke:
upstream_linux-gke: released (4.18~rc5)
precise/esm_linux-gke: DNE
trusty_linux-gke: DNE
trusty/esm_linux-gke: DNE
xenial_linux-gke: ignored (end-of-life)
bionic_linux-gke: not-affected
cosmic_linux-gke: DNE
disco_linux-gke: DNE
devel_linux-gke: DNE

Patches_linux-azure:
upstream_linux-azure: released (4.18~rc5)
precise/esm_linux-azure: DNE
trusty_linux-azure: released (4.15.0-1037.39~14.04.2)
trusty/esm_linux-azure: released (4.15.0-1037.39~14.04.2)
xenial_linux-azure: released (4.15.0-1037.39~16.04.1)
esm-infra/xenial_linux-azure: released (4.15.0-1037.39~16.04.1)
bionic_linux-azure: released (4.15.0-1037.39)
cosmic_linux-azure: not-affected (4.18.0-1003.3)
disco_linux-azure: not-affected (4.18.0-1003.3)
devel_linux-azure: not-affected (5.0.0-1004.4)

Patches_linux-azure-edge:
upstream_linux-azure-edge: released (4.18~rc5)
precise/esm_linux-azure-edge: DNE
trusty_linux-azure-edge: DNE
trusty/esm_linux-azure-edge: DNE
xenial_linux-azure-edge: released (4.15.0-1037.39~16.04.1)
bionic_linux-azure-edge: released (4.15.0-1037.39)
cosmic_linux-azure-edge: DNE
disco_linux-azure-edge: DNE
devel_linux-azure-edge: DNE

Patches_linux-gcp:
upstream_linux-gcp: released (4.18~rc5)
precise/esm_linux-gcp: DNE
trusty_linux-gcp: DNE
trusty/esm_linux-gcp: DNE
xenial_linux-gcp: released (4.15.0-1027.28~16.04.1)
esm-infra/xenial_linux-gcp: released (4.15.0-1027.28~16.04.1)
bionic_linux-gcp: released (4.15.0-1027.28)
cosmic_linux-gcp: not-affected (4.18.0-1002.3)
disco_linux-gcp: not-affected (4.18.0-1002.3)
devel_linux-gcp: not-affected (5.0.0-1004.4)

Patches_linux-kvm:
upstream_linux-kvm: released (4.18~rc5)
precise/esm_linux-kvm: DNE
trusty_linux-kvm: DNE
trusty/esm_linux-kvm: DNE
xenial_linux-kvm: released (4.4.0-1032.38)
esm-infra/xenial_linux-kvm: released (4.4.0-1032.38)
bionic_linux-kvm: released (4.15.0-1029.29)
cosmic_linux-kvm: not-affected (4.18.0-1002.2)
disco_linux-kvm: not-affected (4.18.0-1003.3)
devel_linux-kvm: not-affected (5.0.0-1004.4)

Patches_linux-euclid:
upstream_linux-euclid: released (4.18~rc5)
precise/esm_linux-euclid: DNE
trusty_linux-euclid: DNE
trusty/esm_linux-euclid: DNE
xenial_linux-euclid: ignored (was needed ESM criteria)
bionic_linux-euclid: DNE
cosmic_linux-euclid: DNE
disco_linux-euclid: DNE
devel_linux-euclid: DNE

Patches_linux-oem:
upstream_linux-oem: released (4.18~rc5)
precise/esm_linux-oem: DNE
trusty_linux-oem: DNE
trusty/esm_linux-oem: DNE
xenial_linux-oem: ignored (was needed now end-of-life)
bionic_linux-oem: released (4.15.0-1033.38)
cosmic_linux-oem: released (4.15.0-1033.38)
disco_linux-oem: not-affected (4.15.0-1033.38)
devel_linux-oem: not-affected (4.15.0-1035.40)

Patches_linux-gcp-edge:
upstream_linux-gcp-edge: released (4.18~rc5)
precise/esm_linux-gcp-edge: DNE
trusty_linux-gcp-edge: DNE
trusty/esm_linux-gcp-edge: DNE
xenial_linux-gcp-edge: DNE
bionic_linux-gcp-edge: not-affected (4.18.0-1004.5~18.04.1)
cosmic_linux-gcp-edge: DNE
disco_linux-gcp-edge: DNE
devel_linux-gcp-edge: DNE

Patches_linux-aws-hwe:
upstream_linux-aws-hwe: released (4.18~rc5)
precise/esm_linux-aws-hwe: DNE
trusty_linux-aws-hwe: DNE
trusty/esm_linux-aws-hwe: DNE
xenial_linux-aws-hwe: released (4.15.0-1032.34~16.04.1)
esm-infra/xenial_linux-aws-hwe: released (4.15.0-1032.34~16.04.1)
bionic_linux-aws-hwe: DNE
cosmic_linux-aws-hwe: DNE
disco_linux-aws-hwe: DNE
devel_linux-aws-hwe: DNE

Patches_linux-oracle:
upstream_linux-oracle: released (4.18~rc5)
precise/esm_linux-oracle: DNE
trusty_linux-oracle: DNE
trusty/esm_linux-oracle: DNE
xenial_linux-oracle: released (4.15.0-1008.10~16.04.1)
esm-infra/xenial_linux-oracle: released (4.15.0-1008.10~16.04.1)
bionic_linux-oracle: released (4.15.0-1008.10)
cosmic_linux-oracle: released (4.15.0-1008.10)
disco_linux-oracle: not-affected (4.15.0-1008.10)
devel_linux-oracle: not-affected (4.15.0-1011.13)