New issue
Advanced search Search tips

Issue 824100 link

Starred by 1 user
Status: WontFix
Owner:
zsm@chromium.org
Closed: Mar 2018
Cc:
groeck@chromium.org
chromeos-kernel-security-bug-access@google.com
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 3
Type: Bug-Security



Sign in to add a comment

CVE-2018-7273 CrOS: Vulnerability reported in Linux kernel

Project Member Reported by vomit.go...@appspot.gserviceaccount.com, Mar 21 2018 
VOMIT (go/vomit) has received an external vulnerability report for the Linux kernel. 

Advisory: CVE-2018-7273
  Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2018-7273
  CVSS severity score: 4.9/10.0
  Description:

In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and use the addresses to find the locations of kernel code and data and bypass kernel security protections such as KASLR.



This bug was filed by http://go/vomit
Please contact us at vomit-team@google.com if you need any assistance.

Comment 1 by zsm@chromium.org, Mar 21 2018

Cc: guenter@chromium.org
Labels: Security_Severity-Low Security_Impact-None Pri-3
Owner: zsm@chromium.org
Status: WontFix (was: Untriaged)
The fix here[1] has not made it into upstream yet. CONFIG_BLK_DEV_FD does not seem to be enabled on any of the kernels, marking as WontFix.

Comment 2 by zsm@chromium.org, Mar 21 2018

Cc: -guenter@chromium.org groeck@chromium.org

Sign in to add a comment