[USN-4005-1] Linux kernel vulnerabilities
Severity
High
Affected Packages
18
CVEs
2
Several security issues were fixed in the Linux kernel.
It was discovered that a null pointer dereference vulnerability existed in
the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash). (CVE-2019-11810)
It was discovered that a race condition leading to a use-after-free existed
in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux
kernel. The RDS protocol is disabled via blocklist by default in Ubuntu.
If enabled, a local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2019-11815)
- ID
- USN-4005-1
- Severity
- high
- Severity from
- CVE-2019-11815
- URL
- https://ubuntu.com/security/notices/USN-4005-1
- Published
-
2019-06-04T22:47:53
(5 years ago) - Modified
-
2019-06-04T22:47:53
(5 years ago) - Other Advisories
-
- ALAS-2019-1212
- ALAS2-2019-1212
- DSA-4465-1
- ELSA-2019-1959
- ELSA-2019-2029
- ELSA-2019-2736
- ELSA-2019-4670
- ELSA-2019-4685
- openSUSE-SU-2019:1404-1
- openSUSE-SU-2019:1479-1
- openSUSE-SU-2019:1923-1
- openSUSE-SU-2019:1924-1
- RHSA-2019:1959
- RHSA-2019:1971
- RHSA-2019:2029
- RHSA-2019:2043
- RHSA-2019:2736
- SSA:2019-169-01
- SUSE-SU-2019:1527-1
- SUSE-SU-2019:1529-1
- SUSE-SU-2019:1530-1
- SUSE-SU-2019:1532-1
- SUSE-SU-2019:1534-1
- SUSE-SU-2019:1535-1
- SUSE-SU-2019:1536-1
- SUSE-SU-2019:1550-1
- SUSE-SU-2019:2068-1
- SUSE-SU-2019:2069-1
- SUSE-SU-2019:2070-1
- SUSE-SU-2019:2071-1
- SUSE-SU-2019:2072-1
- SUSE-SU-2019:2073-1
- SUSE-SU-2019:2262-1
- SUSE-SU-2019:2263-1
- SUSE-SU-2019:2299-1
- SUSE-SU-2019:2430-1
- SUSE-SU-2019:2450-1
- USN-4008-1
- USN-4008-3
- USN-4068-1
- USN-4068-2
- USN-4115-1
- USN-4118-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-virtual?distro=disco | ubuntu | linux-image-virtual | < 5.0.0.16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-snapdragon?distro=disco | ubuntu | linux-image-snapdragon | < 5.0.0.1013.6 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-raspi2?distro=disco | ubuntu | linux-image-raspi2 | < 5.0.0.1009.6 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-lowlatency?distro=disco | ubuntu | linux-image-lowlatency | < 5.0.0.16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-kvm?distro=disco | ubuntu | linux-image-kvm | < 5.0.0.1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-gke?distro=disco | ubuntu | linux-image-gke | < 5.0.0.1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-generic?distro=disco | ubuntu | linux-image-generic | < 5.0.0.16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-generic-lpae?distro=disco | ubuntu | linux-image-generic-lpae | < 5.0.0.16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-gcp?distro=disco | ubuntu | linux-image-gcp | < 5.0.0.1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-aws?distro=disco | ubuntu | linux-image-aws | < 5.0.0.1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-16-lowlatency?distro=disco | ubuntu | linux-image-5.0.0-16-lowlatency | < 5.0.0-16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-16-generic?distro=disco | ubuntu | linux-image-5.0.0-16-generic | < 5.0.0-16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-16-generic-lpae?distro=disco | ubuntu | linux-image-5.0.0-16-generic-lpae | < 5.0.0-16.17 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1013-snapdragon?distro=disco | ubuntu | linux-image-5.0.0-1013-snapdragon | < 5.0.0-1013.13 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1009-raspi2?distro=disco | ubuntu | linux-image-5.0.0-1009-raspi2 | < 5.0.0-1009.9 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1007-kvm?distro=disco | ubuntu | linux-image-5.0.0-1007-kvm | < 5.0.0-1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1007-gcp?distro=disco | ubuntu | linux-image-5.0.0-1007-gcp | < 5.0.0-1007.7 | disco | ||
Affected | pkg:deb/ubuntu/linux-image-5.0.0-1007-aws?distro=disco | ubuntu | linux-image-5.0.0-1007-aws | < 5.0.0-1007.7 | disco |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |