usn-3930-2
Vulnerability from osv_ubuntu
Published
2019-04-02 18:36
Modified
2026-06-03 10:45
Summary
linux-hwe, linux-azure vulnerabilities
Details

USN-3930-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.10. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 18.10 for Ubuntu 18.04 LTS.

Mathias Payer and Hui Peng discovered a use-after-free vulnerability in the Advanced Linux Sound Architecture (ALSA) subsystem. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2018-19824)

Shlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an information leak in the Bluetooth implementation of the Linux kernel. An attacker within Bluetooth range could use this to expose sensitive information (kernel memory). (CVE-2019-3459, CVE-2019-3460)

Jann Horn discovered that the KVM implementation in the Linux kernel contained a use-after-free vulnerability. An attacker in a guest VM with access to /dev/kvm could use this to cause a denial of service (guest VM crash). (CVE-2019-6974)

Jim Mattson and Felix Wilhelm discovered a use-after-free vulnerability in the KVM subsystem of the Linux kernel, when using nested virtual machines. A local attacker in a guest VM could use this to cause a denial of service (system crash) or possibly execute arbitrary code in the host system. (CVE-2019-7221)

Felix Wilhelm discovered that an information leak vulnerability existed in the KVM subsystem of the Linux kernel, when nested virtualization is used. A local attacker could use this to expose sensitive information (host system memory to a guest VM). (CVE-2019-7222)

Jann Horn discovered that the eBPF implementation in the Linux kernel was insufficiently hardened against Spectre V1 attacks. A local attacker could use this to expose sensitive information. (CVE-2019-7308)

It was discovered that a use-after-free vulnerability existed in the user- space API for crypto (af_alg) implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-8912)

Jakub Jirasek discovered a use-after-free vulnerability in the SCTP implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-8956)

It was discovered that the Linux kernel did not properly deallocate memory when handling certain errors while reading files. A local attacker could use this to cause a denial of service (excessive memory consumption). (CVE-2019-8980)

It was discovered that a use-after-free vulnerability existed in the IPMI implementation in the Linux kernel. A local attacker with access to the IPMI character device files could use this to cause a denial of service (system crash). (CVE-2019-9003)

Jann Horn discovered that the SNMP NAT implementation in the Linux kernel performed insufficient ASN.1 length checks. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-9162)

Jann Horn discovered that the mmap implementation in the Linux kernel did not properly check for the mmap minimum address in some situations. A local attacker could use this to assist exploiting a kernel NULL pointer dereference vulnerability. (CVE-2019-9213)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2018-19824",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-3459",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-3460",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-6974",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7221",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7222",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7308",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8912",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8956",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8980",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9003",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9162",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9213",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "linux-azure-cloud-tools-4.18.0-1014",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-azure-headers-4.18.0-1014",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-azure-tools-4.18.0-1014",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-modules-extra-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-1014-azure",
            "binary_version": "4.18.0-1014.14~18.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:18.04:LTS",
        "name": "linux-azure",
        "purl": "pkg:deb/ubuntu/linux-azure@4.18.0-1014.14~18.04.1?arch=source\u0026distro=bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.18.0-1014.14~18.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "4.15.0-1002.2",
        "4.15.0-1003.3",
        "4.15.0-1004.4",
        "4.15.0-1008.8",
        "4.15.0-1009.9",
        "4.15.0-1012.12",
        "4.15.0-1013.13",
        "4.15.0-1014.14",
        "4.15.0-1018.18",
        "4.15.0-1019.19",
        "4.15.0-1021.21",
        "4.15.0-1022.23",
        "4.15.0-1023.24",
        "4.15.0-1025.26",
        "4.15.0-1028.29",
        "4.15.0-1030.31",
        "4.15.0-1031.32",
        "4.15.0-1032.33",
        "4.15.0-1035.36",
        "4.15.0-1036.38",
        "4.15.0-1037.39",
        "4.18.0-1011.11~18.04.1",
        "4.18.0-1013.13~18.04.1"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2018-19824",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-3459",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-3460",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-6974",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7221",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7222",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-7308",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8912",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8956",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-8980",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9003",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9162",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-9213",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "block-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "block-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "block-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "dasd-extra-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "dasd-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fb-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "floppy-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-17-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-17-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-17",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-17-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-17-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-hwe-cloud-tools-4.18.0-17",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-hwe-tools-4.18.0-17",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-17-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-17-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-17-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-17-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-modules-extra-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-source-4.18.0",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-17-generic",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-17-generic-lpae",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-17-lowlatency",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-17-snapdragon",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "message-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "message-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-pcmcia-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "pata-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "pcmcia-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "pcmcia-storage-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "serial-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "virtio-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "virtio-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-17-generic-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-17-generic-lpae-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-17-snapdragon-di",
            "binary_version": "4.18.0-17.18~18.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:18.04:LTS",
        "name": "linux-hwe",
        "purl": "pkg:deb/ubuntu/linux-hwe@4.18.0-17.18~18.04.1?arch=source\u0026distro=bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.18.0-17.18~18.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "4.18.0-13.14~18.04.1",
        "4.18.0-14.15~18.04.1",
        "4.18.0-15.16~18.04.1",
        "4.18.0-16.17~18.04.1"
      ]
    }
  ],
  "aliases": [],
  "details": "USN-3930-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.10.\nThis update provides the corresponding updates for the Linux Hardware\nEnablement (HWE) kernel from Ubuntu 18.10 for Ubuntu 18.04 LTS.\n\nMathias Payer and Hui Peng discovered a use-after-free vulnerability in the\nAdvanced Linux Sound Architecture (ALSA) subsystem. A physically proximate\nattacker could use this to cause a denial of service (system crash).\n(CVE-2018-19824)\n\nShlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an information\nleak in the Bluetooth implementation of the Linux kernel. An attacker\nwithin Bluetooth range could use this to expose sensitive information\n(kernel memory). (CVE-2019-3459, CVE-2019-3460)\n\nJann Horn discovered that the KVM implementation in the Linux kernel\ncontained a use-after-free vulnerability. An attacker in a guest VM with\naccess to /dev/kvm could use this to cause a denial of service (guest VM\ncrash). (CVE-2019-6974)\n\nJim Mattson and Felix Wilhelm discovered a use-after-free vulnerability in\nthe KVM subsystem of the Linux kernel, when using nested virtual machines.\nA local attacker in a guest VM could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code in the host system.\n(CVE-2019-7221)\n\nFelix Wilhelm discovered that an information leak vulnerability existed in\nthe KVM subsystem of the Linux kernel, when nested virtualization is used.\nA local attacker could use this to expose sensitive information (host\nsystem memory to a guest VM). (CVE-2019-7222)\n\nJann Horn discovered that the eBPF implementation in the Linux kernel was\ninsufficiently hardened against Spectre V1 attacks. A local attacker could\nuse this to expose sensitive information. (CVE-2019-7308)\n\nIt was discovered that a use-after-free vulnerability existed in the user-\nspace API for crypto (af_alg) implementation in the Linux kernel. A local\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2019-8912)\n\nJakub Jirasek discovered a use-after-free vulnerability in the SCTP\nimplementation in the Linux kernel. A local attacker could use this to\ncause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2019-8956)\n\nIt was discovered that the Linux kernel did not properly deallocate memory\nwhen handling certain errors while reading files. A local attacker could\nuse this to cause a denial of service (excessive memory consumption).\n(CVE-2019-8980)\n\nIt was discovered that a use-after-free vulnerability existed in the IPMI\nimplementation in the Linux kernel. A local attacker with access to the\nIPMI character device files could use this to cause a denial of service\n(system crash). (CVE-2019-9003)\n\nJann Horn discovered that the SNMP NAT implementation in the Linux kernel\nperformed insufficient ASN.1 length checks. An attacker could use this to\ncause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2019-9162)\n\nJann Horn discovered that the mmap implementation in the Linux kernel did\nnot properly check for the mmap minimum address in some situations. A local\nattacker could use this to assist exploiting a kernel NULL pointer\ndereference vulnerability. (CVE-2019-9213)\n",
  "id": "USN-3930-2",
  "modified": "2026-06-03T10:45:18Z",
  "published": "2019-04-02T18:36:10Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-3930-2"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-19824"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-3459"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-3460"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-6974"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-7221"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-7222"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-7308"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-8912"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-8956"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-8980"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-9003"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-9162"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-9213"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "linux-hwe, linux-azure vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2018-19824",
    "UBUNTU-CVE-2019-3459",
    "UBUNTU-CVE-2019-3460",
    "UBUNTU-CVE-2019-6974",
    "UBUNTU-CVE-2019-7221",
    "UBUNTU-CVE-2019-7222",
    "UBUNTU-CVE-2019-7308",
    "UBUNTU-CVE-2019-8912",
    "UBUNTU-CVE-2019-8956",
    "UBUNTU-CVE-2019-8980",
    "UBUNTU-CVE-2019-9003",
    "UBUNTU-CVE-2019-9162",
    "UBUNTU-CVE-2019-9213"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…