You are not logged in.
Hi,
I've been notified by our security that new vulnerability release with code CVE-2018-8781. The recommendation is to upgrade the kernel to the latest version since this vulnerability affected to kernel 3.4 to 4.15. Is Arch Linux affected to this CVE, may I know how I resolve and confirm and the issue resolved?
Thank you, for your help
Bayu Permadi
Last edited by bayupermadi (2018-05-11 08:25:11)
Offline
Vanilla arch kernel is at 4.16.8
Moving to NC...
Offline
Hi Jason,
Thank's for that information. I'll set this to resolve
Thank you
Bayu Permadi
Offline
Kernel Versions 4.15.14, 4.14.31, 4.9.91 und 4.4.125 are already patched (according to https://www.golem.de/news/cve-2018-8897 … 4319.html).
linux-lts is Version 4.14.40...
Offline
See https://security.archlinux.org/package/linux and https://security.archlinux.org/CVE-2018-8781
The latter is a dead link because we don't yet track this CVE, but in general our security tracker should be the first place you check just in case.
...
I've pinged the security team about this thread so they can add the CVE to the tracker.
Managing AUR repos The Right Way -- aurpublish (now a standalone tool)
Offline