Vulnerability Change Records for CVE-2018-8897

Change History

CVE Modified by MITRE 5/17/2018 9:29:05 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2018/dsa-4201 [No Types Assigned]

CVE Modified by MITRE 9/28/2018 6:29:16 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20180927-0002/ [No Types Assigned]

CVE Modified by MITRE 5/16/2018 9:29:14 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1524 [No Types Assigned]

CVE Modified by MITRE 6/02/2018 9:29:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html [No Types Assigned]

CWE Remap 10/02/2019 8:3:26 PM

Action Type Old Value New Value
Changed CWE
CWE-264
CWE-264
CWE-362

CVE Modified by MITRE 5/10/2018 9:29:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1040744 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1040861 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1040866 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1040882 [No Types Assigned]
Added Reference

								
							
							
						
https://www.debian.org/security/2018/dsa-4196 [No Types Assigned]

Initial Analysis 6/20/2018 10:0:15 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:6.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:6.5:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:7.1:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:7.2:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:7.3:*:*:*:*:*:*:*
     *cpe:2.3:a:citrix:xenserver:7.4:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*
     *cpe:2.3:o:synology:diskstation_manager:5.2:*:*:*:*:*:*:*
     *cpe:2.3:o:synology:diskstation_manager:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:synology:diskstation_manager:6.1:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (excluding) 10.13.4
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:* versions from (including) 11.0 up to (excluding) 11.1
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_virtualization_manager:3.0:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:xen:xen:-:*:*:*:*:*:x86:*
Added CVSS V2

								
							
							
						
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Added CVSS V3

								
							
							
						
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9 No Types Assigned
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9 Patch, Third Party Advisory
Changed Reference Type
http://openwall.com/lists/oss-security/2018/05/08/1 No Types Assigned
http://openwall.com/lists/oss-security/2018/05/08/1 Mailing List, Third Party Advisory
Changed Reference Type
http://openwall.com/lists/oss-security/2018/05/08/4 No Types Assigned
http://openwall.com/lists/oss-security/2018/05/08/4 Mailing List, Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/104071 No Types Assigned
http://www.securityfocus.com/bid/104071 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1040744 No Types Assigned
http://www.securitytracker.com/id/1040744 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1040849 No Types Assigned
http://www.securitytracker.com/id/1040849 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1040861 No Types Assigned
http://www.securitytracker.com/id/1040861 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1040866 No Types Assigned
http://www.securitytracker.com/id/1040866 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1040882 No Types Assigned
http://www.securitytracker.com/id/1040882 Third Party Advisory, VDB Entry
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1318 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1318 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1319 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1319 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1345 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1345 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1346 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1346 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1347 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1347 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1348 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1348 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1349 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1349 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1350 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1350 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1351 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1351 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1352 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1352 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1353 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1353 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1354 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1354 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1355 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1355 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1524 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1524 Third Party Advisory
Changed Reference Type
https://bugzilla.redhat.com/show_bug.cgi?id=1567074 No Types Assigned
https://bugzilla.redhat.com/show_bug.cgi?id=1567074 Issue Tracking, Third Party Advisory
Changed Reference Type
https://github.com/can1357/CVE-2018-8897/ No Types Assigned
https://github.com/can1357/CVE-2018-8897/ Exploit, Third Party Advisory
Changed Reference Type
https://github.com/torvalds/linux/commit/d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9 No Types Assigned
https://github.com/torvalds/linux/commit/d8ba61ba58c88d5207c1ba2f7d9a2280e7d03be9 Patch, Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2018/05/msg00015.html No Types Assigned
https://lists.debian.org/debian-lts-announce/2018/05/msg00015.html Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html No Types Assigned
https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html Third Party Advisory
Changed Reference Type
https://patchwork.kernel.org/patch/10386677/ No Types Assigned
https://patchwork.kernel.org/patch/10386677/ Patch, Third Party Advisory
Changed Reference Type
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8897 No Types Assigned
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8897 Patch, Third Party Advisory, Vendor Advisory
Changed Reference Type
https://support.apple.com/HT208742 No Types Assigned
https://support.apple.com/HT208742 Third Party Advisory
Changed Reference Type
https://support.citrix.com/article/CTX234679 No Types Assigned
https://support.citrix.com/article/CTX234679 Third Party Advisory
Changed Reference Type
https://svnweb.freebsd.org/base?view=revision&revision=333368 No Types Assigned
https://svnweb.freebsd.org/base?view=revision&revision=333368 Third Party Advisory
Changed Reference Type
https://usn.ubuntu.com/3641-1/ No Types Assigned
https://usn.ubuntu.com/3641-1/ Third Party Advisory
Changed Reference Type
https://usn.ubuntu.com/3641-2/ No Types Assigned
https://usn.ubuntu.com/3641-2/ Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2018/dsa-4196 No Types Assigned
https://www.debian.org/security/2018/dsa-4196 Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2018/dsa-4201 No Types Assigned
https://www.debian.org/security/2018/dsa-4201 Third Party Advisory
Changed Reference Type
https://www.exploit-db.com/exploits/44697/ No Types Assigned
https://www.exploit-db.com/exploits/44697/ Exploit, Third Party Advisory, VDB Entry
Changed Reference Type
https://www.freebsd.org/security/advisories/FreeBSD-SA-18:06.debugreg.asc No Types Assigned
https://www.freebsd.org/security/advisories/FreeBSD-SA-18:06.debugreg.asc Third Party Advisory
Changed Reference Type
https://www.synology.com/support/security/Synology_SA_18_21 No Types Assigned
https://www.synology.com/support/security/Synology_SA_18_21 Third Party Advisory
Changed Reference Type
https://www.triplefault.io/2018/05/spurious-db-exceptions-with-pop-ss.html No Types Assigned
https://www.triplefault.io/2018/05/spurious-db-exceptions-with-pop-ss.html Third Party Advisory
Changed Reference Type
https://xenbits.xen.org/xsa/advisory-260.html No Types Assigned
https://xenbits.xen.org/xsa/advisory-260.html Patch, Third Party Advisory

CVE Modified by MITRE 9/21/2019 5:15:10 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190921-01-debug-en [No Types Assigned]

CVE Modified by MITRE 11/13/2018 6:29:32 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/11/msg00013.html [No Types Assigned]

CVE Modified by MITRE 5/24/2018 9:29:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.exploit-db.com/exploits/44697/ [No Types Assigned]

CVE Modified by MITRE 7/27/2018 9:29:25 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.exploit-db.com/exploits/45024/ [No Types Assigned]

CVE Modified by MITRE 1/03/2019 5:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.kb.cert.org/vuls/id/631579 [No Types Assigned]

CVE Modified by MITRE 5/09/2018 9:29:06 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/104071 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1040849 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1318 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1319 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1345 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1346 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1347 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1348 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1349 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1350 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1351 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1352 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1353 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1354 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2018:1355 [No Types Assigned]
Added Reference

								
							
							
						
https://patchwork.kernel.org/patch/10386677/ [No Types Assigned]
Added Reference

								
							
							
						
https://support.citrix.com/article/CTX234679 [No Types Assigned]
Added Reference

								
							
							
						
https://usn.ubuntu.com/3641-2/ [No Types Assigned]
Added Reference

								
							
							
						
https://www.synology.com/support/security/Synology_SA_18_21 [No Types Assigned]
Added Reference

								
							
							
						
https://www.triplefault.io/2018/05/spurious-db-exceptions-with-pop-ss.html [No Types Assigned]

CVE Modified by MITRE 5/18/2018 9:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://github.com/can1357/CVE-2018-8897/ [No Types Assigned]

CVE Modified by MITRE 5/29/2018 9:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://usn.ubuntu.com/3641-1/ [No Types Assigned]

CVE Modified by MITRE 11/30/2018 4:34:48 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 [No Types Assigned]

CVE Modified by MITRE 5/26/2018 9:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/05/msg00015.html [No Types Assigned]