CVE-2018-16862: Infoleak
First published: Mon Nov 12 2018(Updated: )
A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation (removal). The new file created with the same inode may contain leftover pages from cleancache and so the old file data instead of the new one. References: <a href="https://seclists.org/oss-sec/2018/q4/169">https://seclists.org/oss-sec/2018/q4/169</a> A suggested patch: <a href="https://lore.kernel.org/patchwork/patch/1011367/">https://lore.kernel.org/patchwork/patch/1011367/</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <=4.14 | |
| Red Hat Enterprise Linux | =7.0 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Debian Linux | =8.0 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.133-1 6.12.22-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/106009
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16862
- https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html
- https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html
- https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html
- https://lore.kernel.org/patchwork/patch/1011367/
- https://seclists.org/oss-sec/2018/q4/169
- https://usn.ubuntu.com/3879-1/
- https://usn.ubuntu.com/3879-2/
- https://usn.ubuntu.com/4094-1/
- https://usn.ubuntu.com/4118-1/
- https://launchpad.net/bugs/cve/CVE-2018-16862
- https://access.redhat.com/certified-hypervisors
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1653122
- https://bugzilla.redhat.com/show_bug.cgi?id=1649017
- https://git.kernel.org/linus/6ff38bd40230af35e446239396e5fc8ebd6a5248
- https://security-tracker.debian.org/tracker/CVE-2018-16862
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16862
- https://nvd.nist.gov/vuln/detail/CVE-2018-16862
- https://ubuntu.com/security/CVE-2018-16862
Frequently Asked Questions
What is the severity of CVE-2018-16862?
CVE-2018-16862 is considered to be a medium severity vulnerability due to its potential to expose old file data.
How do I fix CVE-2018-16862?
To fix CVE-2018-16862, update the Linux kernel to versions 5.10.223-1, 5.10.226-1, 6.1.123-1, 6.1.119-1, 6.12.11-1, or 6.12.12-1, or apply patches provided by your OS vendor.
What systems are affected by CVE-2018-16862?
CVE-2018-16862 affects the Linux kernel versions up to 4.14 as well as specific versions of Red Hat Enterprise Linux, Ubuntu Linux, and Debian GNU/Linux.
What are the potential impacts of CVE-2018-16862?
The potential impacts of CVE-2018-16862 include unintended data exposure where new files might contain data remnants from previously truncated files.
Where can I find more information about CVE-2018-16862?
More information about CVE-2018-16862 can be found in security advisories from your OS vendor and security databases.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-16862
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/references
- agent/trending
- agent/last-modified-date
- agent/source
- agent/author
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- collector/security-tracker-debian
- source/Debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/4.14
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- vendor/debian
- canonical/debian linux
- version/debian linux/8.0
- package-manager/debian