VDB
SUSE-SU-2018%3A2344-2
SUSE-SU-2018%3A2344-2
PUBLISHED
CVSS 7.5 HIGH
Security update for the Linux Kernel
Risk Scores
CVSS 4.0
7.5
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE:Linux Enterprise Server 12 SP2-BCL | lttng-modules | 0, 0 |
| SUSE:Linux Enterprise Server 12 SP2-BCL | kgraft-patch-SLE12-SP2_Update_24 | 0, 0 |
| SUSE:Linux Enterprise Server 12 SP2-BCL | kernel-syms | 0, 0 |
| SUSE:Linux Enterprise Server 12 SP2-BCL | kernel-source | 0, 0 |
| SUSE:Linux Enterprise Server 12 SP2-BCL | kernel-default | 0, 0 |
Exploit Intelligence
- Escape from Docker using CVE-2017-1000112 and CVE-2017-18344, including gaining root privilage, get all capbilities, namespace recovery, filesystem recovery, cgroup limitation bypass and seccomp bypass. (github-poc-repo)
- LPE on linux kernel based on CVE-2017-14954, CVE-2017-18344, CVE-2017-5123 (github-poc-repo)
Timeline
- Oct 18, 2018 CVE Published
- Feb 4, 2026 CVE Updated
References
- https://www.suse.com/support/update/announcement/2018/suse-su-20182344-2/ advisory
- https://bugzilla.suse.com/1064232 report
- https://bugzilla.suse.com/1076110 report
- https://bugzilla.suse.com/1083635 report
- https://bugzilla.suse.com/1085042 report
- https://bugzilla.suse.com/1086652 report
- https://bugzilla.suse.com/1087081 report
- https://bugzilla.suse.com/1089343 report
- https://bugzilla.suse.com/1090123 report
- https://bugzilla.suse.com/1091171 report
- https://bugzilla.suse.com/1094248 report
- https://bugzilla.suse.com/1096130 report
- https://bugzilla.suse.com/1096480 report
- https://bugzilla.suse.com/1096978 report
- https://bugzilla.suse.com/1097140 report
- https://bugzilla.suse.com/1097551 report
- https://bugzilla.suse.com/1098016 report
- https://bugzilla.suse.com/1098425 report
- https://bugzilla.suse.com/1098435 report
- https://bugzilla.suse.com/1099924 report
…and 21 more