You are not logged in.
- Topics: Active | Unanswered
#1 2018-05-11 06:31:35
- bayupermadi
- Member
- Registered: 2017-05-24
- Posts: 2
[Solved] CVE-2018-8781 - Linux Kernel Privilege Escalation Vulnera...
Hi,
I've been notified by our security that new vulnerability release with code CVE-2018-8781. The recommendation is to upgrade the kernel to the latest version since this vulnerability affected to kernel 3.4 to 4.15. Is Arch Linux affected to this CVE, may I know how I resolve and confirm and the issue resolved?
Thank you, for your help
Bayu Permadi
Last edited by bayupermadi (2018-05-11 08:25:11)
Offline
#2 2018-05-11 06:46:15
- jasonwryan
- Anarchist
- From: .nz
- Registered: 2009-05-09
- Posts: 30,424
- Website
Re: [Solved] CVE-2018-8781 - Linux Kernel Privilege Escalation Vulnera...
Vanilla arch kernel is at 4.16.8
Moving to NC...
Offline
#3 2018-05-11 08:20:46
- bayupermadi
- Member
- Registered: 2017-05-24
- Posts: 2
Re: [Solved] CVE-2018-8781 - Linux Kernel Privilege Escalation Vulnera...
Hi Jason,
Thank's for that information. I'll set this to resolve
Thank you
Bayu Permadi
Offline
#4 2018-05-11 09:29:46
- Haller
- Member
- Registered: 2018-04-08
- Posts: 45
Re: [Solved] CVE-2018-8781 - Linux Kernel Privilege Escalation Vulnera...
Kernel Versions 4.15.14, 4.14.31, 4.9.91 und 4.4.125 are already patched (according to https://www.golem.de/news/cve-2018-8897 … 4319.html).
linux-lts is Version 4.14.40...
Offline
#5 2018-05-11 12:49:25
- eschwartz
- Fellow
- Registered: 2014-08-08
- Posts: 4,097
Re: [Solved] CVE-2018-8781 - Linux Kernel Privilege Escalation Vulnera...
See https://security.archlinux.org/package/linux and https://security.archlinux.org/CVE-2018-8781
The latter is a dead link because we don't yet track this CVE, but in general our security tracker should be the first place you check just in case.
...
I've pinged the security team about this thread so they can add the CVE to the tracker.
Managing AUR repos The Right Way -- aurpublish (now a standalone tool)
Offline