An Integer overflow vulnerability was found in several Linux distributions. A local attacker can exploit this vulnerability via a SUID-root binary and obtain full root privileges on an affected systems. 32-bit systems would not be affected as the address space is not enough to exploit this flaw.
The following is only a sample list of Linux systems that are affected. The list is not exhaustive and it is strongly recommended to consult the product vendors if the used Linux systems are affected.
Successful exploitation could lead to take control of an affected system.
The vulnerability is fixed in some of the Linux distributions, such as CentOS, Debian and Red Hat. System administrators should check with their product vendors to confirm if their Linux systems are affected and the availability of patches, and if so, apply the patches or follow the recommendations provided by the product vendors to mitigate the risk.
https://www.qualys.com/2018/09/25/cve-2018-14634/mutagen-astronomy-integer-overflow-linux-create_elf_tables-cve-2018-14634.txt
https://access.redhat.com/security/cve/cve-2018-14634
https://security-tracker.debian.org/tracker/CVE-2018-14634
https://www.mail-archive.com/centos@centos.org/msg129194.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14634