USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 18.04 for Ubuntu 16.04 LTS.
Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kernel did not properly restrict mmap() ranges in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11085)
It was discovered that a race condition leading to a use-after-free existed in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel. The RDS protocol is disabled via blocklist by default in Ubuntu. If enabled, a local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11815)
It was discovered that the ext4 file system implementation in the Linux kernel did not properly zero out memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11833)
It was discovered that the Bluetooth Human Interface Device Protocol (HIDP) implementation in the Linux kernel did not properly verify strings were NULL terminated in certain situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11884)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-buildinfo-4.15.0-1037-gcp" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-gcp-headers-4.15.0-1037" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-gcp-tools-4.15.0-1037" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-headers-4.15.0-1037-gcp" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-image-unsigned-4.15.0-1037-gcp" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-modules-4.15.0-1037-gcp" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-modules-extra-4.15.0-1037-gcp" }, { "binary_version": "4.15.0-1037.39~16.04.1", "binary_name": "linux-tools-4.15.0-1037-gcp" } ] }
{ "ecosystem": "Ubuntu:16.04:LTS", "cves": [ { "severity": [ { "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11085" }, { "severity": [ { "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11815" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11833" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11884" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "block-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "block-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "crypto-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "crypto-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "dasd-extra-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "dasd-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fat-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fat-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fb-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "firewire-core-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "floppy-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fs-core-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fs-core-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fs-secondary-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "fs-secondary-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "input-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "input-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "ipmi-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "ipmi-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "irda-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "irda-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "kernel-image-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "kernel-image-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-buildinfo-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-buildinfo-4.15.0-55-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-buildinfo-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-cloud-tools-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-cloud-tools-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-headers-4.15.0-55" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-headers-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-headers-4.15.0-55-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-headers-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-hwe-cloud-tools-4.15.0-55" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-hwe-tools-4.15.0-55" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-hwe-udebs-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-hwe-udebs-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-image-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-image-4.15.0-55-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-image-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-image-unsigned-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-image-unsigned-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-modules-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-modules-4.15.0-55-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-modules-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-modules-extra-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-source-4.15.0" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-tools-4.15.0-55-generic" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-tools-4.15.0-55-generic-lpae" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "linux-tools-4.15.0-55-lowlatency" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "md-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "md-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "message-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "mouse-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "mouse-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "multipath-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "multipath-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nfs-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nfs-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-pcmcia-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-shared-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-shared-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-usb-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "nic-usb-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "parport-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "parport-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "pata-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "pcmcia-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "pcmcia-storage-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "plip-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "plip-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "ppp-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "ppp-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "sata-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "sata-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "scsi-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "scsi-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "serial-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "storage-core-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "storage-core-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "usb-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "usb-modules-4.15.0-55-generic-lpae-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "virtio-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "vlan-modules-4.15.0-55-generic-di" }, { "binary_version": "4.15.0-55.60~16.04.2", "binary_name": "vlan-modules-4.15.0-55-generic-lpae-di" } ] }
{ "ecosystem": "Ubuntu:16.04:LTS", "cves": [ { "severity": [ { "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11085" }, { "severity": [ { "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11815" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11833" }, { "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ], "id": "CVE-2019-11884" } ] }