[USN-4008-1] Linux kernel vulnerabilities
Severity
Medium
Affected Packages
55
CVEs
4
Several security issues were fixed in the Linux kernel.
Robert Święcki discovered that the Linux kernel did not properly apply
Address Space Layout Randomization (ASLR) in some situations for setuid elf
binaries. A local attacker could use this to improve the chances of
exploiting an existing vulnerability in a setuid elf binary.
(CVE-2019-11190)
It was discovered that a null pointer dereference vulnerability existed in
the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash). (CVE-2019-11810)
It was discovered that a race condition leading to a use-after-free existed
in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux
kernel. The RDS protocol is disabled via blocklist by default in Ubuntu.
If enabled, a local attacker could use this to cause a denial of service
system crash) or possibly execute arbitrary code. (CVE-2019-11815)
Federico Manuel Bento discovered that the Linux kernel did not properly
apply Address Space Layout Randomization (ASLR) in some situations for
setuid a.out binaries. A local attacker could use this to improve the
chances of exploiting an existing vulnerability in a setuid a.out binary.
(CVE-2019-11191)
As a hardening measure, this update disables a.out support.
- ID
- USN-4008-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-4008-1
- Published
-
2019-06-04T22:52:17
(5 years ago) - Modified
-
2019-06-04T22:52:17
(5 years ago) - Other Advisories
-
-
ALAS-2019-1212
-
ALAS2-2019-1212
-
DSA-4465-1
-
ELSA-2019-1959
-
ELSA-2019-2029
-
ELSA-2019-2736
-
ELSA-2019-4642
-
ELSA-2019-4644
-
ELSA-2019-4646
-
ELSA-2019-4670
-
ELSA-2019-4685
-
ELSA-2020-1016
-
openSUSE-SU-2019:1404-1
-
openSUSE-SU-2019:1479-1
-
openSUSE-SU-2019:1923-1
-
openSUSE-SU-2019:1924-1
-
RHSA-2019:1959
-
RHSA-2019:1971
-
RHSA-2019:2029
-
RHSA-2019:2043
-
RHSA-2019:2736
-
RHSA-2020:1016
-
RHSA-2020:1070
-
SSA:2019-169-01
-
SUSE-SU-2019:1527-1
-
SUSE-SU-2019:1529-1
-
SUSE-SU-2019:1530-1
-
SUSE-SU-2019:1532-1
-
SUSE-SU-2019:1533-1
-
SUSE-SU-2019:1534-1
-
SUSE-SU-2019:1535-1
-
SUSE-SU-2019:1536-1
-
SUSE-SU-2019:1550-1
-
SUSE-SU-2019:1692-1
-
SUSE-SU-2019:2068-1
-
SUSE-SU-2019:2069-1
-
SUSE-SU-2019:2070-1
-
SUSE-SU-2019:2071-1
-
SUSE-SU-2019:2072-1
-
SUSE-SU-2019:2073-1
-
SUSE-SU-2019:2262-1
-
SUSE-SU-2019:2263-1
-
SUSE-SU-2019:2299-1
-
SUSE-SU-2019:2430-1
-
SUSE-SU-2019:2450-1
-
USN-4005-1
-
USN-4006-1
-
USN-4006-2
-
USN-4007-1
-
USN-4007-2
-
USN-4008-2
-
USN-4008-3
-
USN-4068-1
-
USN-4068-2
-
USN-4115-1
-
USN-4118-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:deb/ubuntu/linux-image-virtual?distro=xenial | ubuntu |
 linux-image-virtual
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-virtual-lts-xenial?distro=xenial | ubuntu |
linux-image-virtual-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-virtual-lts-wily?distro=xenial | ubuntu |
linux-image-virtual-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-virtual-lts-vivid?distro=xenial | ubuntu |
linux-image-virtual-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-virtual-lts-utopic?distro=xenial | ubuntu |
linux-image-virtual-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-snapdragon?distro=xenial | ubuntu |
linux-image-snapdragon
|
< 4.4.0.1114.106 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-raspi2?distro=xenial | ubuntu |
linux-image-raspi2
|
< 4.4.0.1110.110 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-smp?distro=xenial | ubuntu |
linux-image-powerpc64-smp
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-smp-lts-xenial?distro=xenial | ubuntu |
linux-image-powerpc64-smp-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-smp-lts-wily?distro=xenial | ubuntu |
linux-image-powerpc64-smp-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-smp-lts-vivid?distro=xenial | ubuntu |
linux-image-powerpc64-smp-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-smp-lts-utopic?distro=xenial | ubuntu |
linux-image-powerpc64-smp-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-emb?distro=xenial | ubuntu |
linux-image-powerpc64-emb
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-emb-lts-xenial?distro=xenial | ubuntu |
linux-image-powerpc64-emb-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-emb-lts-wily?distro=xenial | ubuntu |
linux-image-powerpc64-emb-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-emb-lts-vivid?distro=xenial | ubuntu |
linux-image-powerpc64-emb-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc64-emb-lts-utopic?distro=xenial | ubuntu |
linux-image-powerpc64-emb-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-smp?distro=xenial | ubuntu |
linux-image-powerpc-smp
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-smp-lts-xenial?distro=xenial | ubuntu |
linux-image-powerpc-smp-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-smp-lts-wily?distro=xenial | ubuntu |
linux-image-powerpc-smp-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-smp-lts-vivid?distro=xenial | ubuntu |
linux-image-powerpc-smp-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-smp-lts-utopic?distro=xenial | ubuntu |
linux-image-powerpc-smp-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-e500mc?distro=xenial | ubuntu |
linux-image-powerpc-e500mc
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-e500mc-lts-xenial?distro=xenial | ubuntu |
linux-image-powerpc-e500mc-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-e500mc-lts-wily?distro=xenial | ubuntu |
linux-image-powerpc-e500mc-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-e500mc-lts-vivid?distro=xenial | ubuntu |
linux-image-powerpc-e500mc-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-powerpc-e500mc-lts-utopic?distro=xenial | ubuntu |
linux-image-powerpc-e500mc-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-lowlatency?distro=xenial | ubuntu |
linux-image-lowlatency
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-lowlatency-lts-xenial?distro=xenial | ubuntu |
linux-image-lowlatency-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-lowlatency-lts-wily?distro=xenial | ubuntu |
linux-image-lowlatency-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-lowlatency-lts-vivid?distro=xenial | ubuntu |
linux-image-lowlatency-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-lowlatency-lts-utopic?distro=xenial | ubuntu |
linux-image-lowlatency-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-kvm?distro=xenial | ubuntu |
linux-image-kvm
|
< 4.4.0.1047.47 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic?distro=xenial | ubuntu |
linux-image-generic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lts-xenial?distro=xenial | ubuntu |
linux-image-generic-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lts-wily?distro=xenial | ubuntu |
linux-image-generic-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lts-vivid?distro=xenial | ubuntu |
linux-image-generic-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lts-utopic?distro=xenial | ubuntu |
linux-image-generic-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lpae?distro=xenial | ubuntu |
linux-image-generic-lpae
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lpae-lts-xenial?distro=xenial | ubuntu |
linux-image-generic-lpae-lts-xenial
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lpae-lts-wily?distro=xenial | ubuntu |
linux-image-generic-lpae-lts-wily
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lpae-lts-vivid?distro=xenial | ubuntu |
linux-image-generic-lpae-lts-vivid
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-generic-lpae-lts-utopic?distro=xenial | ubuntu |
linux-image-generic-lpae-lts-utopic
|
< 4.4.0.150.158 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-aws?distro=xenial | ubuntu |
linux-image-aws
|
< 4.4.0.1084.87 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-powerpc64-smp?distro=xenial | ubuntu |
linux-image-4.4.0-150-powerpc64-smp
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-powerpc64-emb?distro=xenial | ubuntu |
linux-image-4.4.0-150-powerpc64-emb
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-powerpc-smp?distro=xenial | ubuntu |
linux-image-4.4.0-150-powerpc-smp
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-powerpc-e500mc?distro=xenial | ubuntu |
linux-image-4.4.0-150-powerpc-e500mc
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-lowlatency?distro=xenial | ubuntu |
linux-image-4.4.0-150-lowlatency
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-generic?distro=xenial | ubuntu |
linux-image-4.4.0-150-generic
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-150-generic-lpae?distro=xenial | ubuntu |
linux-image-4.4.0-150-generic-lpae
|
< 4.4.0-150.176 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-1114-snapdragon?distro=xenial | ubuntu |
linux-image-4.4.0-1114-snapdragon
|
< 4.4.0-1114.119 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-1110-raspi2?distro=xenial | ubuntu |
linux-image-4.4.0-1110-raspi2
|
< 4.4.0-1110.118 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-1084-aws?distro=xenial | ubuntu |
linux-image-4.4.0-1084-aws
|
< 4.4.0-1084.94 | xenial | ||
| Affected | pkg:deb/ubuntu/linux-image-4.4.0-1047-kvm?distro=xenial | ubuntu |
linux-image-4.4.0-1047-kvm
|
< 4.4.0-1047.53 | xenial |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |