[USN-3797-1] Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel.
Noam Rathaus discovered that a use-after-free vulnerability existed in the
Infiniband implementation in the Linux kernel. An attacker could use this
to cause a denial of service (system crash). (CVE-2018-14734)
It was discovered that an integer overflow existed in the CD-ROM driver of
the Linux kernel. A local attacker could use this to expose sensitive
information (kernel memory). (CVE-2018-16658)
It was discovered that an integer overflow existed in the HID Bluetooth
implementation in the Linux kernel that could lead to a buffer overwrite.
An attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2018-9363)
Yves Younan discovered that the CIPSO labeling implementation in the Linux
kernel did not properly handle IP header options in some situations. A
remote attacker could use this to specially craft network traffic that
could cause a denial of service (infinite loop). (CVE-2018-10938)
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-extra-4.4.0-138-generic?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc64-smp?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc64-emb?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc-smp?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc-e500mc?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-lowlatency?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-generic?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-138-generic-lpae?distro=xenial | < 4.4.0-138.164 |
pkg:deb/ubuntu/linux-image-4.4.0-1103-snapdragon?distro=xenial | < 4.4.0-1103.108 |
pkg:deb/ubuntu/linux-image-4.4.0-1099-raspi2?distro=xenial | < 4.4.0-1099.107 |
pkg:deb/ubuntu/linux-image-4.4.0-1070-aws?distro=xenial | < 4.4.0-1070.80 |
pkg:deb/ubuntu/linux-image-4.4.0-1036-kvm?distro=xenial | < 4.4.0-1036.42 |
- ID
- USN-3797-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-3797-1
- Published
-
2018-10-23T03:17:09
(5 years ago) - Modified
-
2018-10-23T03:17:09
(5 years ago) - Other Advisories
-
- ALAS-2018-1086
- ALAS-2019-1280
- ALAS2-2018-1086
- ALAS2-2019-1280
- ALAS2-2019-1281
- DSA-4308-1
- ELSA-2018-4208
- ELSA-2018-4227
- ELSA-2018-4242
- ELSA-2018-4245
- ELSA-2018-4246
- ELSA-2018-4250
- ELSA-2018-4261
- ELSA-2018-4270
- ELSA-2019-2029
- ELSA-2019-4315
- FEDORA-2018-0edb45d9db
- FEDORA-2018-1621b2204a
- FEDORA-2018-1c80fea1cd
- FEDORA-2018-2ee3411cb8
- FEDORA-2018-2f6df9abfb
- FEDORA-2018-3857a8b41a
- FEDORA-2018-59e4747e0f
- FEDORA-2018-6e8c330d50
- FEDORA-2018-79d7c3d2df
- FEDORA-2018-8422d94975
- FEDORA-2018-94315e9a6b
- FEDORA-2018-9f4381d8c4
- FEDORA-2018-a0914af224
- FEDORA-2018-b68776e5b0
- FEDORA-2018-c0a1284064
- FEDORA-2018-ca0e10fc6e
- FEDORA-2018-d77cc41f35
- FEDORA-2018-ddbaca855e
- FEDORA-2018-e820fccd83
- FEDORA-2018-f8cba144ae
- FEDORA-2019-16de0047d4
- FEDORA-2019-196ab64d65
- FEDORA-2019-1b986880ea
- FEDORA-2019-20a89ca9af
- FEDORA-2019-337484d88b
- FEDORA-2019-3da64f3e61
- FEDORA-2019-4002b91800
- FEDORA-2019-509c133845
- FEDORA-2019-65c6d11eba
- FEDORA-2019-7d3500d712
- FEDORA-2019-a6cd583a8d
- FEDORA-2019-c36afa818c
- FEDORA-2019-ce2933b003
- RHSA-2019:2029
- RHSA-2019:2043
- SUSE-SU-2018:2328-1
- SUSE-SU-2018:2344-1
- SUSE-SU-2018:2344-2
- SUSE-SU-2018:2362-1
- SUSE-SU-2018:2374-1
- SUSE-SU-2018:2384-1
- SUSE-SU-2018:2538-1
- SUSE-SU-2018:2539-1
- SUSE-SU-2018:2596-1
- SUSE-SU-2018:2775-1
- SUSE-SU-2018:2776-1
- SUSE-SU-2018:2858-1
- SUSE-SU-2018:2860-1
- SUSE-SU-2018:2862-1
- SUSE-SU-2018:2864-1
- SUSE-SU-2018:2879-1
- SUSE-SU-2018:2907-1
- SUSE-SU-2018:2908-1
- SUSE-SU-2018:2908-2
- SUSE-SU-2018:2935-1
- SUSE-SU-2018:2938-1
- SUSE-SU-2018:2940-1
- SUSE-SU-2018:2961-1
- SUSE-SU-2018:2962-1
- SUSE-SU-2018:2963-1
- SUSE-SU-2018:2964-1
- SUSE-SU-2018:2980-1
- SUSE-SU-2018:2981-1
- SUSE-SU-2018:3029-1
- SUSE-SU-2018:3083-1
- SUSE-SU-2018:3084-1
- SUSE-SU-2018:3088-1
- SUSE-SU-2018:3961-1
- SUSE-SU-2019:1422-1
- SUSE-SU-2019:1437-1
- SUSE-SU-2019:1489-1
- USN-3797-2
- USN-3820-1
- USN-3820-2
- USN-3820-3
- USN-3822-1
- USN-3822-2
- USN-3847-1
- USN-3847-2
- USN-3847-3
- USN-3849-1
- USN-3849-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-extra-4.4.0-138-generic?distro=xenial | ubuntu | linux-image-extra-4.4.0-138-generic | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc64-smp?distro=xenial | ubuntu | linux-image-4.4.0-138-powerpc64-smp | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc64-emb?distro=xenial | ubuntu | linux-image-4.4.0-138-powerpc64-emb | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc-smp?distro=xenial | ubuntu | linux-image-4.4.0-138-powerpc-smp | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-powerpc-e500mc?distro=xenial | ubuntu | linux-image-4.4.0-138-powerpc-e500mc | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-lowlatency?distro=xenial | ubuntu | linux-image-4.4.0-138-lowlatency | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-generic?distro=xenial | ubuntu | linux-image-4.4.0-138-generic | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-138-generic-lpae?distro=xenial | ubuntu | linux-image-4.4.0-138-generic-lpae | < 4.4.0-138.164 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-1103-snapdragon?distro=xenial | ubuntu | linux-image-4.4.0-1103-snapdragon | < 4.4.0-1103.108 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-1099-raspi2?distro=xenial | ubuntu | linux-image-4.4.0-1099-raspi2 | < 4.4.0-1099.107 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-1070-aws?distro=xenial | ubuntu | linux-image-4.4.0-1070-aws | < 4.4.0-1070.80 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.4.0-1036-kvm?distro=xenial | ubuntu | linux-image-4.4.0-1036-kvm | < 4.4.0-1036.42 | xenial |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |