Forum Stats

  • 3,826,326 Users
  • 2,260,624 Discussions
  • 7,896,898 Comments

Discussions

Does the CVE-2017-18202 affect the OEL 7.6.1810 with UEK3 kernels?

3478175
3478175 Member Posts: 1
edited Jul 25, 2019 11:15AM in Oracle Linux and UEK Preview

We have got a vulnerability "kernel: Infoleak/use-after-free in __oom_reap_task_mm function in mm/oom_kill.c (CVE-2017-18202)" being reported on servers using the Oracle Enterprise Linux 7 using UEK 3 latest kernel 3.8.13-118.36.1.el7uek.x86_64 available on the OEL 7 repositories. Kindly confirm if this is affected by that vulnerability or not. I could not find any advisories released by Oracle about this CVE ID that has mentioned about any fixes for this vulnerability on OEL 7 UEK3 kernels. Please let me know if anyone has any information about the solution to fix this vulnerability.

Answers