Executive Summary

Informations
NameCVE-2018-6559First vendor Publication2018-10-26
VendorCveLast vendor Modification2018-12-06

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normally be able to access via an overlayfs mount inside of a user namespace.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6559

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Os3
Os1

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/105752
CONFIRM https://launchpad.net/bugs/1793458
https://lists.ubuntu.com/archives/kernel-team/2018-October/096172.html
https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-6559.html
UBUNTU https://usn.ubuntu.com/3832-1/
https://usn.ubuntu.com/3833-1/
https://usn.ubuntu.com/3835-1/
https://usn.ubuntu.com/3836-1/
https://usn.ubuntu.com/3836-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2018-12-07 00:19:20
  • Multiple Updates
2018-12-04 17:19:51
  • Multiple Updates
2018-11-30 17:19:03
  • Multiple Updates
2018-10-30 13:20:24
  • Multiple Updates
2018-10-26 21:21:04
  • First insertion