Severity Low
Remote No
Type Denial of service
In the Linux kernel 4.14.x before 4.14.75 and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bit right shifts.
Group Package Affected Fixed Severity Status Ticket
AVG-801 linux-lts 4.14.74-1 4.14.75-1 Low Fixed
AVG-784 linux 4.18.12.arch1-1 4.18.13.arch1-1 Low Fixed
Date Advisory Group Package Severity Description
01 Nov 2018 ASA-201811-2 AVG-801 linux-lts Low denial of service
01 Nov 2018 ASA-201811-1 AVG-784 linux Low denial of service