Skip to Main Content

Infrastructure Software

Does the CVE-2017-18202 affect the OEL 7.6.1810 with UEK3 kernels?

3478175Jul 25 2019 — edited Jul 25 2019

We have got a vulnerability "kernel: Infoleak/use-after-free in __oom_reap_task_mm function in mm/oom_kill.c (CVE-2017-18202)" being reported on servers using the Oracle Enterprise Linux 7 using UEK 3 latest kernel 3.8.13-118.36.1.el7uek.x86_64 available on the OEL 7 repositories. Kindly confirm if this is affected by that vulnerability or not. I could not find any advisories released by Oracle about this CVE ID that has mentioned about any fixes for this vulnerability on OEL 7 UEK3 kernels. Please let me know if anyone has any information about the solution to fix this vulnerability.

Comments
Post Details
Added on Jul 25 2019
1 comment
117 views