USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 18.04 for Ubuntu 16.04 LTS.
Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kernel did not properly restrict mmap() ranges in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11085)
It was discovered that a race condition leading to a use-after-free existed in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel. The RDS protocol is disabled via blocklist by default in Ubuntu. If enabled, a local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11815)
It was discovered that the ext4 file system implementation in the Linux kernel did not properly zero out memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11833)
It was discovered that the Bluetooth Human Interface Device Protocol (HIDP) implementation in the Linux kernel did not properly verify strings were NULL terminated in certain situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11884)
{ "binaries": [ { "binary_name": "linux-buildinfo-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-gcp-headers-4.15.0-1037", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-gcp-tools-4.15.0-1037", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-headers-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-image-unsigned-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-modules-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-modules-extra-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" }, { "binary_name": "linux-tools-4.15.0-1037-gcp", "binary_version": "4.15.0-1037.39~16.04.1" } ], "availability": "No subscription required" }
{ "cves": [ { "id": "CVE-2019-11085", "severity": [ { "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11815", "severity": [ { "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11833", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11884", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] } ], "ecosystem": "Ubuntu:16.04:LTS" }
{ "binaries": [ { "binary_name": "block-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "block-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "crypto-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "crypto-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "dasd-extra-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "dasd-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fat-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fat-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fb-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "firewire-core-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "floppy-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fs-core-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fs-core-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fs-secondary-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "fs-secondary-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "input-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "input-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "ipmi-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "ipmi-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "irda-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "irda-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "kernel-image-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "kernel-image-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-buildinfo-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-buildinfo-4.15.0-55-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-buildinfo-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-cloud-tools-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-cloud-tools-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-headers-4.15.0-55", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-headers-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-headers-4.15.0-55-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-headers-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-hwe-cloud-tools-4.15.0-55", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-hwe-tools-4.15.0-55", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-hwe-udebs-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-hwe-udebs-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-image-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-image-4.15.0-55-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-image-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-image-unsigned-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-image-unsigned-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-modules-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-modules-4.15.0-55-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-modules-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-modules-extra-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-source-4.15.0", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-tools-4.15.0-55-generic", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-tools-4.15.0-55-generic-lpae", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "linux-tools-4.15.0-55-lowlatency", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "md-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "md-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "message-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "mouse-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "mouse-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "multipath-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "multipath-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nfs-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nfs-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-pcmcia-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-shared-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-shared-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-usb-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "nic-usb-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "parport-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "parport-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "pata-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "pcmcia-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "pcmcia-storage-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "plip-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "plip-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "ppp-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "ppp-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "sata-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "sata-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "scsi-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "scsi-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "serial-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "storage-core-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "storage-core-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "usb-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "usb-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "virtio-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "vlan-modules-4.15.0-55-generic-di", "binary_version": "4.15.0-55.60~16.04.2" }, { "binary_name": "vlan-modules-4.15.0-55-generic-lpae-di", "binary_version": "4.15.0-55.60~16.04.2" } ], "availability": "No subscription required" }
{ "cves": [ { "id": "CVE-2019-11085", "severity": [ { "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11815", "severity": [ { "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11833", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] }, { "id": "CVE-2019-11884", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "type": "CVSS_V3" }, { "score": "medium", "type": "Ubuntu" } ] } ], "ecosystem": "Ubuntu:16.04:LTS" }