VDB
GCVE-110-MAGEIA-2018-373
GCVE-110-MAGEIA-2018-373
Advisory Published
This kernel update is based on the upstream 4.14.69 and adds additional
fixes for the L1TF and Spectre security issues. It also fixes at least
the following security issues:
Memory leak in the irda_bind function in net/irda/af_irda.c and later in
drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows
local users to cause a denial of service (memory consumption) by repeatedly
binding an AF_IRDA socket (CVE-2018-6554).
The irda_setsockopt function in net/irda/af_irda.c and later in
drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows
local users to cause a denial of service (ias_object use-after-free and
system crash) or possibly have unspecified other impact via an AF_IRDA
socket (CVE-2018-6555).
Other fixes in this update:
* WireGuard has been updated to 0.0.20180904
* all SPI_INTEL_SPI config options have been disable to prevent a potential
bios corrupting bug (mga#23560)
For other changes in this update, see the referenced changelogs.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | kernel-userspace-headers | 0 (affected), 4.14.69-1.mga6 (unaffected) | — |
| Mageia | kernel | 0 (affected), 4.14.69-1.mga6 (unaffected) | — |
| Mageia | kmod-virtualbox | 0 (affected), 5.2.18-3.mga6 (unaffected) | — |
| Mageia | wireguard-tools | 0.0.20180904-1.mga6 (unaffected), 0 (affected) | — |
| Mageia | kmod-xtables-addons | 0 (affected), 2.13-63.mga6 (unaffected) | — |
| Mageia | kmod-vboxadditions | 0 (affected), 5.2.18-3.mga6 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,734 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.