usn-3931-1
Vulnerability from osv_ubuntu
M. Vefa Bicakci and Andy Lutomirski discovered that the kernel did not properly set up all arguments to an error handler callback used when running as a paravirtualized guest. An unprivileged attacker in a paravirtualized guest VM could use this to cause a denial of service (guest VM crash). (CVE-2018-14678)
It was discovered that the KVM implementation in the Linux kernel on ARM 64bit processors did not properly handle some ioctls. An attacker with the privilege to create KVM-based virtual machines could use this to cause a denial of service (host system crash) or execute arbitrary code in the host. (CVE-2018-18021)
Mathias Payer and Hui Peng discovered a use-after-free vulnerability in the Advanced Linux Sound Architecture (ALSA) subsystem. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2018-19824)
Shlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an information leak in the Bluetooth implementation of the Linux kernel. An attacker within Bluetooth range could use this to expose sensitive information (kernel memory). (CVE-2019-3459, CVE-2019-3460)
Jann Horn discovered that the KVM implementation in the Linux kernel contained a use-after-free vulnerability. An attacker in a guest VM with access to /dev/kvm could use this to cause a denial of service (guest VM crash). (CVE-2019-6974)
Jim Mattson and Felix Wilhelm discovered a use-after-free vulnerability in the KVM subsystem of the Linux kernel, when using nested virtual machines. A local attacker in a guest VM could use this to cause a denial of service (system crash) or possibly execute arbitrary code in the host system. (CVE-2019-7221)
Felix Wilhelm discovered that an information leak vulnerability existed in the KVM subsystem of the Linux kernel, when nested virtualization is used. A local attacker could use this to expose sensitive information (host system memory to a guest VM). (CVE-2019-7222)
Jann Horn discovered that the eBPF implementation in the Linux kernel was insufficiently hardened against Spectre V1 attacks. A local attacker could use this to expose sensitive information. (CVE-2019-7308)
It was discovered that a use-after-free vulnerability existed in the user- space API for crypto (af_alg) implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-8912)
It was discovered that the Linux kernel did not properly deallocate memory when handling certain errors while reading files. A local attacker could use this to cause a denial of service (excessive memory consumption). (CVE-2019-8980)
Jann Horn discovered that the mmap implementation in the Linux kernel did not properly check for the mmap minimum address in some situations. A local attacker could use this to assist exploiting a kernel NULL pointer dereference vulnerability. (CVE-2019-9213)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "block-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "block-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "block-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "crypto-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "crypto-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "crypto-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "dasd-extra-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "dasd-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fat-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fat-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fat-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fb-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "firewire-core-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "floppy-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-core-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-core-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-core-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-secondary-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-secondary-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "fs-secondary-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "input-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "input-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "input-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ipmi-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ipmi-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ipmi-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "irda-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "irda-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "irda-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "kernel-image-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "kernel-image-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "kernel-image-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-buildinfo-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-buildinfo-4.15.0-47-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-buildinfo-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-buildinfo-4.15.0-47-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-cloud-tools-4.15.0-47",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-cloud-tools-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-cloud-tools-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-cloud-tools-common",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-headers-4.15.0-47",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-headers-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-headers-4.15.0-47-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-headers-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-headers-4.15.0-47-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-4.15.0-47-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-4.15.0-47-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-unsigned-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-image-unsigned-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-modules-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-modules-4.15.0-47-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-modules-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-modules-4.15.0-47-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-modules-extra-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-source-4.15.0",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-4.15.0-47",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-4.15.0-47-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-4.15.0-47-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-4.15.0-47-lowlatency",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-4.15.0-47-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-common",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-tools-host",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-udebs-generic",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-udebs-generic-lpae",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "linux-udebs-snapdragon",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "md-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "md-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "md-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "message-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "message-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "mouse-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "mouse-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "mouse-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "multipath-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "multipath-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "multipath-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nfs-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nfs-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nfs-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-pcmcia-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-shared-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-shared-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-shared-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-usb-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-usb-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "nic-usb-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "parport-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "parport-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "parport-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "pata-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "pcmcia-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "pcmcia-storage-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "plip-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "plip-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "plip-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ppp-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ppp-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "ppp-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "sata-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "sata-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "sata-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "scsi-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "scsi-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "scsi-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "serial-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "storage-core-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "storage-core-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "storage-core-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "usb-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "usb-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "usb-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "virtio-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "virtio-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "vlan-modules-4.15.0-47-generic-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "vlan-modules-4.15.0-47-generic-lpae-di",
"binary_version": "4.15.0-47.50"
},
{
"binary_name": "vlan-modules-4.15.0-47-snapdragon-di",
"binary_version": "4.15.0-47.50"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux",
"purl": "pkg:deb/ubuntu/linux@4.15.0-47.50?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-47.50"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.13.0-16.19",
"4.13.0-17.20",
"4.13.0-25.29",
"4.13.0-32.35",
"4.15.0-10.11",
"4.15.0-12.13",
"4.15.0-13.14",
"4.15.0-15.16",
"4.15.0-19.20",
"4.15.0-20.21",
"4.15.0-22.24",
"4.15.0-23.25",
"4.15.0-24.26",
"4.15.0-29.31",
"4.15.0-30.32",
"4.15.0-32.35",
"4.15.0-33.36",
"4.15.0-34.37",
"4.15.0-36.39",
"4.15.0-38.41",
"4.15.0-39.42",
"4.15.0-42.45",
"4.15.0-43.46",
"4.15.0-44.47",
"4.15.0-45.48",
"4.15.0-46.49"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "linux-aws-cloud-tools-4.15.0-1035",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-aws-headers-4.15.0-1035",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-aws-tools-4.15.0-1035",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-buildinfo-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-cloud-tools-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-headers-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-image-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-modules-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
},
{
"binary_name": "linux-tools-4.15.0-1035-aws",
"binary_version": "4.15.0-1035.37"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-aws",
"purl": "pkg:deb/ubuntu/linux-aws@4.15.0-1035.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1035.37"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1001.1",
"4.15.0-1003.3",
"4.15.0-1005.5",
"4.15.0-1006.6",
"4.15.0-1007.7",
"4.15.0-1009.9",
"4.15.0-1010.10",
"4.15.0-1011.11",
"4.15.0-1016.16",
"4.15.0-1017.17",
"4.15.0-1019.19",
"4.15.0-1020.20",
"4.15.0-1021.21",
"4.15.0-1023.23",
"4.15.0-1025.25",
"4.15.0-1027.27",
"4.15.0-1029.30",
"4.15.0-1031.33",
"4.15.0-1032.34",
"4.15.0-1033.35",
"4.15.0-1034.36"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "linux-buildinfo-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-gcp-headers-4.15.0-1029",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-gcp-tools-4.15.0-1029",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-headers-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-image-unsigned-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-modules-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-modules-extra-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
},
{
"binary_name": "linux-tools-4.15.0-1029-gcp",
"binary_version": "4.15.0-1029.31"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gcp",
"purl": "pkg:deb/ubuntu/linux-gcp@4.15.0-1029.31?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1029.31"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1001.1",
"4.15.0-1003.3",
"4.15.0-1005.5",
"4.15.0-1006.6",
"4.15.0-1008.8",
"4.15.0-1009.9",
"4.15.0-1010.10",
"4.15.0-1014.14",
"4.15.0-1015.15",
"4.15.0-1017.18",
"4.15.0-1018.19",
"4.15.0-1019.20",
"4.15.0-1021.22",
"4.15.0-1023.24",
"4.15.0-1024.25",
"4.15.0-1025.26",
"4.15.0-1026.27",
"4.15.0-1027.28",
"4.15.0-1028.29"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "linux-buildinfo-4.15.0-1031-kvm",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-headers-4.15.0-1031-kvm",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-image-4.15.0-1031-kvm",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-kvm-headers-4.15.0-1031",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-kvm-tools-4.15.0-1031",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-modules-4.15.0-1031-kvm",
"binary_version": "4.15.0-1031.31"
},
{
"binary_name": "linux-tools-4.15.0-1031-kvm",
"binary_version": "4.15.0-1031.31"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-kvm",
"purl": "pkg:deb/ubuntu/linux-kvm@4.15.0-1031.31?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1031.31"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1002.2",
"4.15.0-1003.3",
"4.15.0-1004.4",
"4.15.0-1006.6",
"4.15.0-1008.8",
"4.15.0-1010.10",
"4.15.0-1011.11",
"4.15.0-1012.12",
"4.15.0-1016.16",
"4.15.0-1017.17",
"4.15.0-1019.19",
"4.15.0-1020.20",
"4.15.0-1021.21",
"4.15.0-1023.23",
"4.15.0-1025.25",
"4.15.0-1026.26",
"4.15.0-1027.27",
"4.15.0-1028.28",
"4.15.0-1029.29",
"4.15.0-1030.30"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "block-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "crypto-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "fat-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "fb-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "firewire-core-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "floppy-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "fs-core-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "fs-secondary-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "input-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "ipmi-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "irda-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "kernel-image-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-buildinfo-4.15.0-1035-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-headers-4.15.0-1035-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-image-unsigned-4.15.0-1035-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-modules-4.15.0-1035-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-oem-headers-4.15.0-1035",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-oem-tools-4.15.0-1035",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-tools-4.15.0-1035-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "linux-udebs-oem",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "md-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "message-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "mouse-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "multipath-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "nfs-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "nic-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "nic-pcmcia-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "nic-shared-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "nic-usb-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "parport-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "pata-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "pcmcia-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "pcmcia-storage-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "plip-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "ppp-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "sata-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "scsi-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "serial-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "storage-core-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "usb-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "virtio-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
},
{
"binary_name": "vlan-modules-4.15.0-1035-oem-di",
"binary_version": "4.15.0-1035.40"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-oem",
"purl": "pkg:deb/ubuntu/linux-oem@4.15.0-1035.40?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1035.40"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1002.3",
"4.15.0-1004.5",
"4.15.0-1006.9",
"4.15.0-1008.11",
"4.15.0-1009.12",
"4.15.0-1012.15",
"4.15.0-1013.16",
"4.15.0-1015.18",
"4.15.0-1017.20",
"4.15.0-1018.21",
"4.15.0-1021.24",
"4.15.0-1024.29",
"4.15.0-1026.31",
"4.15.0-1028.33",
"4.15.0-1030.35",
"4.15.0-1033.38",
"4.15.0-1034.39"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "linux-buildinfo-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-headers-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-image-unsigned-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-modules-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-modules-extra-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-oracle-headers-4.15.0-1010",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-oracle-tools-4.15.0-1010",
"binary_version": "4.15.0-1010.12"
},
{
"binary_name": "linux-tools-4.15.0-1010-oracle",
"binary_version": "4.15.0-1010.12"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-oracle",
"purl": "pkg:deb/ubuntu/linux-oracle@4.15.0-1010.12?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1010.12"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1007.9",
"4.15.0-1008.10",
"4.15.0-1009.11"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2018-14678",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-18021",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2018-19824",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3459",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-3460",
"severity": [
{
"score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-6974",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7221",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7222",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-7308",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8912",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-8980",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2019-9213",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "linux-buildinfo-4.15.0-1033-raspi2",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-headers-4.15.0-1033-raspi2",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-image-4.15.0-1033-raspi2",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-modules-4.15.0-1033-raspi2",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-raspi2-headers-4.15.0-1033",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-raspi2-tools-4.15.0-1033",
"binary_version": "4.15.0-1033.35"
},
{
"binary_name": "linux-tools-4.15.0-1033-raspi2",
"binary_version": "4.15.0-1033.35"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-raspi2",
"purl": "pkg:deb/ubuntu/linux-raspi2@4.15.0-1033.35?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.15.0-1033.35"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.13.0-1005.5",
"4.13.0-1006.6",
"4.13.0-1008.8",
"4.15.0-1006.7",
"4.15.0-1009.10",
"4.15.0-1010.11",
"4.15.0-1011.12",
"4.15.0-1012.13",
"4.15.0-1013.14",
"4.15.0-1017.18",
"4.15.0-1018.19",
"4.15.0-1020.22",
"4.15.0-1021.23",
"4.15.0-1022.24",
"4.15.0-1024.26",
"4.15.0-1026.28",
"4.15.0-1027.29",
"4.15.0-1028.30",
"4.15.0-1029.31",
"4.15.0-1030.32",
"4.15.0-1031.33",
"4.15.0-1032.34"
]
}
],
"aliases": [],
"details": "M. Vefa Bicakci and Andy Lutomirski discovered that the kernel did not\nproperly set up all arguments to an error handler callback used when\nrunning as a paravirtualized guest. An unprivileged attacker in a\nparavirtualized guest VM could use this to cause a denial of service (guest\nVM crash). (CVE-2018-14678)\n\nIt was discovered that the KVM implementation in the Linux kernel on ARM\n64bit processors did not properly handle some ioctls. An attacker with the\nprivilege to create KVM-based virtual machines could use this to cause a\ndenial of service (host system crash) or execute arbitrary code in the\nhost. (CVE-2018-18021)\n\nMathias Payer and Hui Peng discovered a use-after-free vulnerability in the\nAdvanced Linux Sound Architecture (ALSA) subsystem. A physically proximate\nattacker could use this to cause a denial of service (system crash).\n(CVE-2018-19824)\n\nShlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an information\nleak in the Bluetooth implementation of the Linux kernel. An attacker\nwithin Bluetooth range could use this to expose sensitive information\n(kernel memory). (CVE-2019-3459, CVE-2019-3460)\n\nJann Horn discovered that the KVM implementation in the Linux kernel\ncontained a use-after-free vulnerability. An attacker in a guest VM with\naccess to /dev/kvm could use this to cause a denial of service (guest VM\ncrash). (CVE-2019-6974)\n\nJim Mattson and Felix Wilhelm discovered a use-after-free vulnerability in\nthe KVM subsystem of the Linux kernel, when using nested virtual machines.\nA local attacker in a guest VM could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code in the host system.\n(CVE-2019-7221)\n\nFelix Wilhelm discovered that an information leak vulnerability existed in\nthe KVM subsystem of the Linux kernel, when nested virtualization is used.\nA local attacker could use this to expose sensitive information (host\nsystem memory to a guest VM). (CVE-2019-7222)\n\nJann Horn discovered that the eBPF implementation in the Linux kernel was\ninsufficiently hardened against Spectre V1 attacks. A local attacker could\nuse this to expose sensitive information. (CVE-2019-7308)\n\nIt was discovered that a use-after-free vulnerability existed in the user-\nspace API for crypto (af_alg) implementation in the Linux kernel. A local\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2019-8912)\n\nIt was discovered that the Linux kernel did not properly deallocate memory\nwhen handling certain errors while reading files. A local attacker could\nuse this to cause a denial of service (excessive memory consumption).\n(CVE-2019-8980)\n\nJann Horn discovered that the mmap implementation in the Linux kernel did\nnot properly check for the mmap minimum address in some situations. A local\nattacker could use this to assist exploiting a kernel NULL pointer\ndereference vulnerability. (CVE-2019-9213)\n",
"id": "USN-3931-1",
"modified": "2026-06-03T10:45:18Z",
"published": "2019-04-02T19:29:26Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3931-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2018-14678"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2018-18021"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2018-19824"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-3459"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-3460"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-6974"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-7221"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-7222"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-7308"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-8912"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-8980"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2019-9213"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, linux-raspi2 vulnerabilities",
"upstream": [
"UBUNTU-CVE-2018-14678",
"UBUNTU-CVE-2018-18021",
"UBUNTU-CVE-2018-19824",
"UBUNTU-CVE-2019-3459",
"UBUNTU-CVE-2019-3460",
"UBUNTU-CVE-2019-6974",
"UBUNTU-CVE-2019-7221",
"UBUNTU-CVE-2019-7222",
"UBUNTU-CVE-2019-7308",
"UBUNTU-CVE-2019-8912",
"UBUNTU-CVE-2019-8980",
"UBUNTU-CVE-2019-9213"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.