USN-4068-2

See a problem?

Source

https://ubuntu.com/security/notices/USN-4068-2

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4068-2.json

JSON Data

https://api.osv.dev/v1/vulns/USN-4068-2

Related

Published

2019-07-23T04:47:10.262896Z

Modified

2019-07-23T04:47:10.262896Z

Summary

linux-hwe, linux-gcp vulnerabilities

Details

USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 18.04 for Ubuntu 16.04 LTS.

Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kernel did not properly restrict mmap() ranges in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11085)

It was discovered that a race condition leading to a use-after-free existed in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel. The RDS protocol is disabled via blocklist by default in Ubuntu. If enabled, a local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11815)

It was discovered that the ext4 file system implementation in the Linux kernel did not properly zero out memory in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11833)

It was discovered that the Bluetooth Human Interface Device Protocol (HIDP) implementation in the Linux kernel did not properly verify strings were NULL terminated in certain situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2019-11884)

References

Affected packages

Ubuntu:16.04:LTS / linux-gcp

Package

Name: linux-gcp
Purl: pkg:deb/ubuntu/linux-gcp@4.15.0-1037.39~16.04.1?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1037.39~16.04.1

Affected versions

4.*

4.10.0-1004.4

4.10.0-1006.6

4.10.0-1007.7

4.10.0-1008.8

4.10.0-1009.9

4.13.0-1002.5

4.13.0-1006.9

4.13.0-1007.10

4.13.0-1008.11

4.13.0-1011.15

4.13.0-1012.16

4.13.0-1013.17

4.13.0-1015.19

4.13.0-1017.21

4.13.0-1019.23

4.15.0-1014.14~16.04.1

4.15.0-1015.15~16.04.1

4.15.0-1017.18~16.04.1

4.15.0-1018.19~16.04.2

4.15.0-1019.20~16.04.1

4.15.0-1021.22~16.04.1

4.15.0-1023.24~16.04.1

4.15.0-1024.25~16.04.2

4.15.0-1025.26~16.04.1

4.15.0-1026.27~16.04.1

4.15.0-1027.28~16.04.1

4.15.0-1028.29~16.04.1

4.15.0-1029.31~16.04.1

4.15.0-1030.32~16.04.1

4.15.0-1032.34~16.04.1

4.15.0-1033.35~16.04.1

4.15.0-1034.36~16.04.1

4.15.0-1036.38~16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-image-unsigned-4.15.0-1037-gcp-dbgsym": "4.15.0-1037.39~16.04.1",
            "linux-modules-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1",
            "linux-gcp-tools-4.15.0-1037": "4.15.0-1037.39~16.04.1",
            "linux-gcp-headers-4.15.0-1037": "4.15.0-1037.39~16.04.1",
            "linux-buildinfo-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1",
            "linux-tools-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1",
            "linux-modules-extra-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1",
            "linux-headers-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1",
            "linux-image-unsigned-4.15.0-1037-gcp": "4.15.0-1037.39~16.04.1"
        }
    ]
}

Ubuntu:16.04:LTS / linux-hwe

Package

Name: linux-hwe
Purl: pkg:deb/ubuntu/linux-hwe@4.15.0-55.60~16.04.2?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-55.60~16.04.2

Affected versions

4.*

4.8.0-36.36~16.04.1

4.8.0-39.42~16.04.1

4.8.0-41.44~16.04.1

4.8.0-42.45~16.04.1

4.8.0-44.47~16.04.1

4.8.0-45.48~16.04.1

4.8.0-46.49~16.04.1

4.8.0-49.52~16.04.1

4.8.0-51.54~16.04.1

4.8.0-52.55~16.04.1

4.8.0-53.56~16.04.1

4.8.0-54.57~16.04.1

4.8.0-56.61~16.04.1

4.8.0-58.63~16.04.1

4.10.0-27.30~16.04.2

4.10.0-28.32~16.04.2

4.10.0-30.34~16.04.1

4.10.0-32.36~16.04.1

4.10.0-33.37~16.04.1

4.10.0-35.39~16.04.1

4.10.0-37.41~16.04.1

4.10.0-38.42~16.04.1

4.10.0-40.44~16.04.1

4.10.0-42.46~16.04.1

4.13.0-26.29~16.04.2

4.13.0-31.34~16.04.1

4.13.0-32.35~16.04.1

4.13.0-36.40~16.04.1

4.13.0-37.42~16.04.1

4.13.0-38.43~16.04.1

4.13.0-39.44~16.04.1

4.13.0-41.46~16.04.1

4.13.0-43.48~16.04.1

4.13.0-45.50~16.04.1

4.15.0-24.26~16.04.1

4.15.0-29.31~16.04.1

4.15.0-30.32~16.04.1

4.15.0-32.35~16.04.1

4.15.0-33.36~16.04.1

4.15.0-34.37~16.04.1

4.15.0-36.39~16.04.1

4.15.0-38.41~16.04.1

4.15.0-39.42~16.04.1

4.15.0-42.45~16.04.1

4.15.0-43.46~16.04.1

4.15.0-45.48~16.04.1

4.15.0-46.49~16.04.1

4.15.0-47.50~16.04.1

4.15.0-48.51~16.04.1

4.15.0-50.54~16.04.1

4.15.0-51.55~16.04.1

4.15.0-52.56~16.04.1

4.15.0-54.58~16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "nic-pcmcia-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-lowlatency-dbgsym": "4.15.0-55.60~16.04.2",
            "ipmi-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "sata-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "nic-shared-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "fat-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-hwe-cloud-tools-4.15.0-55": "4.15.0-55.60~16.04.2",
            "linux-hwe-udebs-generic-lpae": "4.15.0-55.60~16.04.2",
            "usb-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-cloud-tools-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "linux-buildinfo-4.15.0-55-generic-lpae": "4.15.0-55.60~16.04.2",
            "irda-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-generic-lpae-dbgsym": "4.15.0-55.60~16.04.2",
            "multipath-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "virtio-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-generic-dbgsym": "4.15.0-55.60~16.04.2",
            "scsi-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-unsigned-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "linux-tools-4.15.0-55-generic-lpae": "4.15.0-55.60~16.04.2",
            "mouse-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "pata-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-modules-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "nic-shared-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "vlan-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "storage-core-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "kernel-image-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-modules-4.15.0-55-generic-lpae": "4.15.0-55.60~16.04.2",
            "block-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "dasd-extra-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "ipmi-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "nic-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-headers-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "linux-modules-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "linux-hwe-udebs-generic": "4.15.0-55.60~16.04.2",
            "input-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "irda-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "plip-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-tools-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "vlan-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "fs-core-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "pcmcia-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "kernel-image-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "firewire-core-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "mouse-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-source-4.15.0": "4.15.0-55.60~16.04.2",
            "multipath-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "nic-usb-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "dasd-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "ppp-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-buildinfo-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "crypto-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "fs-core-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-unsigned-4.15.0-55-generic-dbgsym": "4.15.0-55.60~16.04.2",
            "nfs-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "serial-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "nfs-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "nic-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "pcmcia-storage-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "fat-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "message-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-image-unsigned-4.15.0-55-lowlatency-dbgsym": "4.15.0-55.60~16.04.2",
            "fb-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "fs-secondary-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-hwe-tools-4.15.0-55": "4.15.0-55.60~16.04.2",
            "storage-core-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "md-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-buildinfo-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "linux-cloud-tools-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "linux-headers-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "parport-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "parport-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-modules-extra-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "block-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-generic-lpae": "4.15.0-55.60~16.04.2",
            "fs-secondary-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-tools-4.15.0-55-generic": "4.15.0-55.60~16.04.2",
            "usb-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "sata-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "linux-headers-4.15.0-55-generic-lpae": "4.15.0-55.60~16.04.2",
            "ppp-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "nic-usb-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "plip-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "crypto-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "md-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "scsi-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2",
            "linux-image-unsigned-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "linux-headers-4.15.0-55": "4.15.0-55.60~16.04.2",
            "linux-image-4.15.0-55-lowlatency": "4.15.0-55.60~16.04.2",
            "floppy-modules-4.15.0-55-generic-di": "4.15.0-55.60~16.04.2",
            "input-modules-4.15.0-55-generic-lpae-di": "4.15.0-55.60~16.04.2"
        }
    ]
}