USN-4115-1

See a problem?

Source

https://ubuntu.com/security/notices/USN-4115-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4115-1.json

JSON Data

https://api.osv.dev/v1/vulns/USN-4115-1

Related

Published

2019-09-02T20:38:34.651820Z

Modified

2019-09-02T20:38:34.651820Z

Summary

linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2 vulnerabilities

Details

Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2018-19985)

Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to cause a denial of service. (CVE-2018-20784)

It was discovered that the Intel Wi-Fi device driver in the Linux kernel did not properly validate certain Tunneled Direct Link Setup (TDLS). A physically proximate attacker could use this to cause a denial of service (Wi-Fi disconnect). (CVE-2019-0136)

It was discovered that the Bluetooth UART implementation in the Linux kernel did not properly check for missing tty operations. A local attacker could use this to cause a denial of service. (CVE-2019-10207)

Amit Klein and Benny Pinkas discovered that the Linux kernel did not sufficiently randomize IP ID values generated for connectionless networking protocols. A remote attacker could use this to track particular Linux devices. (CVE-2019-10638)

Amit Klein and Benny Pinkas discovered that the location of kernel addresses could be exposed by the implementation of connection-less network protocols in the Linux kernel. A remote attacker could possibly use this to assist in the exploitation of another vulnerability in the Linux kernel. (CVE-2019-10639)

It was discovered that an integer overflow existed in the Linux kernel when reference counting pages, leading to potential use-after-free issues. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-11487)

Jann Horn discovered that a race condition existed in the Linux kernel when performing core dumps. A local attacker could use this to cause a denial of service (system crash) or expose sensitive information. (CVE-2019-11599)

It was discovered that a null pointer dereference vulnerability existed in the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-11810)

It was discovered that the GTCO tablet input driver in the Linux kernel did not properly bounds check the initial HID report sent by the device. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-13631)

Praveen Pandey discovered that the Linux kernel did not properly validate sent signals in some situations on PowerPC systems with transactional memory disabled. A local attacker could use this to cause a denial of service. (CVE-2019-13648)

It was discovered that the floppy driver in the Linux kernel did not properly validate meta data, leading to a buffer overread. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-14283)

It was discovered that the floppy driver in the Linux kernel did not properly validate ioctl() calls, leading to a division-by-zero. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-14284)

Tuba Yavuz discovered that a race condition existed in the DesignWare USB3 DRD Controller device driver in the Linux kernel. A physically proximate attacker could use this to cause a denial of service. (CVE-2019-14763)

It was discovered that an out-of-bounds read existed in the QLogic QEDI iSCSI Initiator Driver in the Linux kernel. A local attacker could possibly use this to expose sensitive information (kernel memory). (CVE-2019-15090)

It was discovered that the Raremono AM/FM/SW radio device driver in the Linux kernel did not properly allocate memory, leading to a use-after-free. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2019-15211)

It was discovered at a double-free error existed in the USB Rio 500 device driver for the Linux kernel. A physically proximate attacker could use this to cause a denial of service. (CVE-2019-15212)

It was discovered that a race condition existed in the Advanced Linux Sound Architecture (ALSA) subsystem of the Linux kernel, leading to a potential use-after-free. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-15214)

It was discovered that a race condition existed in the CPiA2 video4linux device driver for the Linux kernel, leading to a use-after-free. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-15215)

It was discovered that a race condition existed in the Softmac USB Prism54 device driver in the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15220)

It was discovered that a use-after-free vulnerability existed in the AppleTalk implementation in the Linux kernel if an error occurs during initialization. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-15292)

Jason Wang discovered that an infinite loop vulnerability existed in the virtio net driver in the Linux kernel. A local attacker in a guest VM could possibly use this to cause a denial of service in the host system. (CVE-2019-3900)

Daniele Antonioli, Nils Ole Tippenhauer, and Kasper B. Rasmussen discovered that the Bluetooth protocol BR/EDR specification did not properly require sufficiently strong encryption key lengths. A physically proximate attacker could use this to expose sensitive information. (CVE-2019-9506)

It was discovered that a race condition existed in the USB YUREX device driver in the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15216)

It was discovered that the Siano USB MDTV receiver device driver in the Linux kernel made improper assumptions about the device characteristics. A physically proximate attacker could use this cause a denial of service (system crash). (CVE-2019-15218)

It was discovered that the Line 6 POD USB device driver in the Linux kernel did not properly validate data size information from the device. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15221)

Muyu Yu discovered that the CAN implementation in the Linux kernel in some situations did not properly restrict the field size when processing outgoing frames. A local attacker with CAPNETADMIN privileges could use this to execute arbitrary code. (CVE-2019-3701)

Vladis Dronov discovered that the debug interface for the Linux kernel's HID subsystem did not properly validate passed parameters in some situations. A local privileged attacker could use this to cause a denial of service (infinite loop). (CVE-2019-3819)

References

Affected packages

Ubuntu:16.04:LTS / linux-azure

Package

Name: linux-azure
Purl: pkg:deb/ubuntu/linux-azure@4.15.0-1056.61?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1056.61

Affected versions

4.*

4.11.0-1009.9

4.11.0-1011.11

4.11.0-1013.13

4.11.0-1014.14

4.11.0-1015.15

4.11.0-1016.16

4.13.0-1005.7

4.13.0-1006.8

4.13.0-1007.9

4.13.0-1009.12

4.13.0-1011.14

4.13.0-1012.15

4.13.0-1014.17

4.13.0-1016.19

4.13.0-1018.21

4.15.0-1013.13~16.04.2

4.15.0-1014.14~16.04.1

4.15.0-1018.18~16.04.1

4.15.0-1019.19~16.04.1

4.15.0-1021.21~16.04.1

4.15.0-1022.22~16.04.1

4.15.0-1023.24~16.04.1

4.15.0-1025.26~16.04.1

4.15.0-1028.29~16.04.1

4.15.0-1030.31~16.04.1

4.15.0-1031.32~16.04.1

4.15.0-1032.33~16.04.1

4.15.0-1035.36~16.04.1

4.15.0-1036.38~16.04.1

4.15.0-1037.39~16.04.1

4.15.0-1039.43

4.15.0-1040.44

4.15.0-1041.45

4.15.0-1042.46

4.15.0-1045.49

4.15.0-1046.50

4.15.0-1047.51

4.15.0-1049.54

4.15.0-1050.55

4.15.0-1051.56

4.15.0-1052.57

4.15.0-1055.60

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-azure-headers-4.15.0-1056": "4.15.0-1056.61",
            "linux-buildinfo-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-image-unsigned-4.15.0-1056-azure-dbgsym": "4.15.0-1056.61",
            "linux-modules-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-headers-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-modules-extra-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-tools-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-azure-tools-4.15.0-1056": "4.15.0-1056.61",
            "linux-image-unsigned-4.15.0-1056-azure": "4.15.0-1056.61",
            "linux-azure-cloud-tools-4.15.0-1056": "4.15.0-1056.61",
            "linux-cloud-tools-4.15.0-1056-azure": "4.15.0-1056.61"
        }
    ]
}

Ubuntu:16.04:LTS / linux-gcp

Package

Name: linux-gcp
Purl: pkg:deb/ubuntu/linux-gcp@4.15.0-1041.43?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1041.43

Affected versions

4.*

4.10.0-1004.4

4.10.0-1006.6

4.10.0-1007.7

4.10.0-1008.8

4.10.0-1009.9

4.13.0-1002.5

4.13.0-1006.9

4.13.0-1007.10

4.13.0-1008.11

4.13.0-1011.15

4.13.0-1012.16

4.13.0-1013.17

4.13.0-1015.19

4.13.0-1017.21

4.13.0-1019.23

4.15.0-1014.14~16.04.1

4.15.0-1015.15~16.04.1

4.15.0-1017.18~16.04.1

4.15.0-1018.19~16.04.2

4.15.0-1019.20~16.04.1

4.15.0-1021.22~16.04.1

4.15.0-1023.24~16.04.1

4.15.0-1024.25~16.04.2

4.15.0-1025.26~16.04.1

4.15.0-1026.27~16.04.1

4.15.0-1027.28~16.04.1

4.15.0-1028.29~16.04.1

4.15.0-1029.31~16.04.1

4.15.0-1030.32~16.04.1

4.15.0-1032.34~16.04.1

4.15.0-1033.35~16.04.1

4.15.0-1034.36~16.04.1

4.15.0-1036.38~16.04.1

4.15.0-1037.39~16.04.1

4.15.0-1040.42~16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-gcp-tools-4.15.0-1041": "4.15.0-1041.43",
            "linux-tools-4.15.0-1041-gcp": "4.15.0-1041.43",
            "linux-gcp-headers-4.15.0-1041": "4.15.0-1041.43",
            "linux-buildinfo-4.15.0-1041-gcp": "4.15.0-1041.43",
            "linux-modules-extra-4.15.0-1041-gcp": "4.15.0-1041.43",
            "linux-image-unsigned-4.15.0-1041-gcp-dbgsym": "4.15.0-1041.43",
            "linux-image-unsigned-4.15.0-1041-gcp": "4.15.0-1041.43",
            "linux-headers-4.15.0-1041-gcp": "4.15.0-1041.43",
            "linux-modules-4.15.0-1041-gcp": "4.15.0-1041.43"
        }
    ]
}

Ubuntu:16.04:LTS / linux-hwe

Package

Name: linux-hwe
Purl: pkg:deb/ubuntu/linux-hwe@4.15.0-60.67~16.04.1?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-60.67~16.04.1

Affected versions

4.*

4.8.0-36.36~16.04.1

4.8.0-39.42~16.04.1

4.8.0-41.44~16.04.1

4.8.0-42.45~16.04.1

4.8.0-44.47~16.04.1

4.8.0-45.48~16.04.1

4.8.0-46.49~16.04.1

4.8.0-49.52~16.04.1

4.8.0-51.54~16.04.1

4.8.0-52.55~16.04.1

4.8.0-53.56~16.04.1

4.8.0-54.57~16.04.1

4.8.0-56.61~16.04.1

4.8.0-58.63~16.04.1

4.10.0-27.30~16.04.2

4.10.0-28.32~16.04.2

4.10.0-30.34~16.04.1

4.10.0-32.36~16.04.1

4.10.0-33.37~16.04.1

4.10.0-35.39~16.04.1

4.10.0-37.41~16.04.1

4.10.0-38.42~16.04.1

4.10.0-40.44~16.04.1

4.10.0-42.46~16.04.1

4.13.0-26.29~16.04.2

4.13.0-31.34~16.04.1

4.13.0-32.35~16.04.1

4.13.0-36.40~16.04.1

4.13.0-37.42~16.04.1

4.13.0-38.43~16.04.1

4.13.0-39.44~16.04.1

4.13.0-41.46~16.04.1

4.13.0-43.48~16.04.1

4.13.0-45.50~16.04.1

4.15.0-24.26~16.04.1

4.15.0-29.31~16.04.1

4.15.0-30.32~16.04.1

4.15.0-32.35~16.04.1

4.15.0-33.36~16.04.1

4.15.0-34.37~16.04.1

4.15.0-36.39~16.04.1

4.15.0-38.41~16.04.1

4.15.0-39.42~16.04.1

4.15.0-42.45~16.04.1

4.15.0-43.46~16.04.1

4.15.0-45.48~16.04.1

4.15.0-46.49~16.04.1

4.15.0-47.50~16.04.1

4.15.0-48.51~16.04.1

4.15.0-50.54~16.04.1

4.15.0-51.55~16.04.1

4.15.0-52.56~16.04.1

4.15.0-54.58~16.04.1

4.15.0-55.60~16.04.2

4.15.0-58.64~16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "fat-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-modules-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "parport-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "dasd-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "md-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "dasd-extra-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-generic-dbgsym": "4.15.0-60.67~16.04.1",
            "linux-buildinfo-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "linux-image-unsigned-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "linux-hwe-udebs-generic-lpae": "4.15.0-60.67~16.04.1",
            "ppp-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-modules-extra-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "linux-headers-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "storage-core-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "irda-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "vlan-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-hwe-tools-4.15.0-60": "4.15.0-60.67~16.04.1",
            "fs-core-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-generic-lpae-dbgsym": "4.15.0-60.67~16.04.1",
            "linux-image-unsigned-4.15.0-60-generic-dbgsym": "4.15.0-60.67~16.04.1",
            "message-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-buildinfo-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "sata-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "crypto-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "md-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "mouse-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "usb-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "crypto-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "ppp-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "storage-core-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "block-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "fb-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-image-unsigned-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "multipath-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "nfs-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-buildinfo-4.15.0-60-generic-lpae": "4.15.0-60.67~16.04.1",
            "fat-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "block-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "serial-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "nic-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "mouse-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "virtio-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-hwe-udebs-generic": "4.15.0-60.67~16.04.1",
            "linux-modules-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "nic-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "scsi-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "kernel-image-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "parport-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "plip-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-source-4.15.0": "4.15.0-60.67~16.04.1",
            "linux-tools-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "fs-secondary-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-tools-4.15.0-60-generic-lpae": "4.15.0-60.67~16.04.1",
            "ipmi-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "sata-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "pata-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "nic-pcmcia-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "pcmcia-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "input-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "firewire-core-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "nic-shared-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-hwe-cloud-tools-4.15.0-60": "4.15.0-60.67~16.04.1",
            "fs-core-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "nic-shared-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "scsi-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "vlan-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "nfs-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "fs-secondary-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-cloud-tools-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "nic-usb-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-headers-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "linux-headers-4.15.0-60": "4.15.0-60.67~16.04.1",
            "linux-modules-4.15.0-60-generic-lpae": "4.15.0-60.67~16.04.1",
            "floppy-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "usb-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "linux-image-unsigned-4.15.0-60-lowlatency-dbgsym": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-lowlatency-dbgsym": "4.15.0-60.67~16.04.1",
            "linux-headers-4.15.0-60-generic-lpae": "4.15.0-60.67~16.04.1",
            "linux-cloud-tools-4.15.0-60-generic": "4.15.0-60.67~16.04.1",
            "ipmi-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "irda-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "plip-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "kernel-image-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-image-4.15.0-60-generic-lpae": "4.15.0-60.67~16.04.1",
            "pcmcia-storage-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "input-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1",
            "linux-tools-4.15.0-60-lowlatency": "4.15.0-60.67~16.04.1",
            "multipath-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67~16.04.1",
            "nic-usb-modules-4.15.0-60-generic-di": "4.15.0-60.67~16.04.1"
        }
    ]
}

Ubuntu:16.04:LTS / linux-oracle

Package

Name: linux-oracle
Purl: pkg:deb/ubuntu/linux-oracle@4.15.0-1022.25~16.04.1?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1022.25~16.04.1

Affected versions

4.*

4.15.0-1007.9~16.04.1

4.15.0-1008.10~16.04.1

4.15.0-1009.11~16.04.1

4.15.0-1010.12~16.04.1

4.15.0-1011.13~16.04.1

4.15.0-1013.15~16.04.1

4.15.0-1014.16~16.04.1

4.15.0-1015.17~16.04.1

4.15.0-1017.19~16.04.2

4.15.0-1018.20~16.04.1

4.15.0-1021.23~16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-headers-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1",
            "linux-oracle-tools-4.15.0-1022": "4.15.0-1022.25~16.04.1",
            "linux-image-unsigned-4.15.0-1022-oracle-dbgsym": "4.15.0-1022.25~16.04.1",
            "linux-oracle-headers-4.15.0-1022": "4.15.0-1022.25~16.04.1",
            "linux-tools-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1",
            "linux-buildinfo-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1",
            "linux-modules-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1",
            "linux-modules-extra-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1",
            "linux-image-unsigned-4.15.0-1022-oracle": "4.15.0-1022.25~16.04.1"
        }
    ]
}

Ubuntu:18.04:LTS / linux

Package

Name: linux
Purl: pkg:deb/ubuntu/linux@4.15.0-60.67?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-60.67

Affected versions

4.*

4.13.0-16.19

4.13.0-17.20

4.13.0-25.29

4.13.0-32.35

4.15.0-10.11

4.15.0-12.13

4.15.0-13.14

4.15.0-15.16

4.15.0-19.20

4.15.0-20.21

4.15.0-22.24

4.15.0-23.25

4.15.0-24.26

4.15.0-29.31

4.15.0-30.32

4.15.0-32.35

4.15.0-33.36

4.15.0-34.37

4.15.0-36.39

4.15.0-38.41

4.15.0-39.42

4.15.0-42.45

4.15.0-43.46

4.15.0-44.47

4.15.0-45.48

4.15.0-46.49

4.15.0-47.50

4.15.0-48.51

4.15.0-50.54

4.15.0-51.55

4.15.0-52.56

4.15.0-54.58

4.15.0-55.60

4.15.0-58.64

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "dasd-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-modules-4.15.0-60-lowlatency": "4.15.0-60.67",
            "parport-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "fat-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "md-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "dasd-extra-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-image-4.15.0-60-generic-dbgsym": "4.15.0-60.67",
            "linux-buildinfo-4.15.0-60-lowlatency": "4.15.0-60.67",
            "linux-image-unsigned-4.15.0-60-generic": "4.15.0-60.67",
            "ppp-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-headers-4.15.0-60-lowlatency": "4.15.0-60.67",
            "linux-modules-extra-4.15.0-60-generic": "4.15.0-60.67",
            "vlan-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-udebs-generic": "4.15.0-60.67",
            "irda-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "storage-core-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "fs-core-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-image-4.15.0-60-generic-lpae-dbgsym": "4.15.0-60.67",
            "linux-image-unsigned-4.15.0-60-generic-dbgsym": "4.15.0-60.67",
            "message-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-buildinfo-4.15.0-60-generic": "4.15.0-60.67",
            "sata-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "crypto-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "md-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "mouse-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "usb-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "crypto-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "ppp-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "storage-core-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "block-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "fb-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-image-unsigned-4.15.0-60-lowlatency": "4.15.0-60.67",
            "multipath-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "nfs-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-buildinfo-4.15.0-60-generic-lpae": "4.15.0-60.67",
            "fat-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "block-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-tools-4.15.0-60": "4.15.0-60.67",
            "serial-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "nic-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "mouse-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "virtio-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-cloud-tools-4.15.0-60": "4.15.0-60.67",
            "linux-modules-4.15.0-60-generic": "4.15.0-60.67",
            "nic-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "scsi-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "kernel-image-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "parport-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "plip-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-source-4.15.0": "4.15.0-60.67",
            "linux-cloud-tools-common": "4.15.0-60.67",
            "fs-secondary-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-tools-4.15.0-60-generic": "4.15.0-60.67",
            "linux-libc-dev": "4.15.0-60.67",
            "ipmi-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "sata-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "pata-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-doc": "4.15.0-60.67",
            "nic-pcmcia-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "pcmcia-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "input-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "firewire-core-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-image-4.15.0-60-lowlatency": "4.15.0-60.67",
            "nic-shared-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "nfs-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "fs-core-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "nic-shared-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "scsi-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "vlan-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-tools-4.15.0-60-generic-lpae": "4.15.0-60.67",
            "fs-secondary-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-cloud-tools-4.15.0-60-lowlatency": "4.15.0-60.67",
            "linux-tools-host": "4.15.0-60.67",
            "nic-usb-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-headers-4.15.0-60-generic": "4.15.0-60.67",
            "linux-headers-4.15.0-60": "4.15.0-60.67",
            "linux-modules-4.15.0-60-generic-lpae": "4.15.0-60.67",
            "floppy-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "usb-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "linux-udebs-generic-lpae": "4.15.0-60.67",
            "linux-image-unsigned-4.15.0-60-lowlatency-dbgsym": "4.15.0-60.67",
            "linux-image-4.15.0-60-generic": "4.15.0-60.67",
            "linux-image-4.15.0-60-lowlatency-dbgsym": "4.15.0-60.67",
            "linux-headers-4.15.0-60-generic-lpae": "4.15.0-60.67",
            "linux-cloud-tools-4.15.0-60-generic": "4.15.0-60.67",
            "ipmi-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "irda-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "kernel-image-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-tools-common": "4.15.0-60.67",
            "linux-image-4.15.0-60-generic-lpae": "4.15.0-60.67",
            "plip-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "pcmcia-storage-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "input-modules-4.15.0-60-generic-di": "4.15.0-60.67",
            "linux-tools-4.15.0-60-lowlatency": "4.15.0-60.67",
            "multipath-modules-4.15.0-60-generic-lpae-di": "4.15.0-60.67",
            "nic-usb-modules-4.15.0-60-generic-di": "4.15.0-60.67"
        }
    ]
}

Ubuntu:18.04:LTS / linux-gke-4.15

Package

Name: linux-gke-4.15
Purl: pkg:deb/ubuntu/linux-gke-4.15@4.15.0-1041.43?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1041.43

Affected versions

4.*

4.15.0-1030.32

4.15.0-1032.34

4.15.0-1033.35

4.15.0-1034.36

4.15.0-1036.38

4.15.0-1037.39

4.15.0-1040.42

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-headers-4.15.0-1041-gke": "4.15.0-1041.43",
            "linux-gke-4.15-tools-4.15.0-1041": "4.15.0-1041.43",
            "linux-image-unsigned-4.15.0-1041-gke-dbgsym": "4.15.0-1041.43",
            "linux-tools-4.15.0-1041-gke": "4.15.0-1041.43",
            "linux-modules-4.15.0-1041-gke": "4.15.0-1041.43",
            "linux-gke-4.15-headers-4.15.0-1041": "4.15.0-1041.43",
            "linux-image-unsigned-4.15.0-1041-gke": "4.15.0-1041.43",
            "linux-modules-extra-4.15.0-1041-gke": "4.15.0-1041.43",
            "linux-buildinfo-4.15.0-1041-gke": "4.15.0-1041.43"
        }
    ]
}

Ubuntu:18.04:LTS / linux-kvm

Package

Name: linux-kvm
Purl: pkg:deb/ubuntu/linux-kvm@4.15.0-1043.43?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1043.43

Affected versions

4.*

4.15.0-1002.2

4.15.0-1003.3

4.15.0-1004.4

4.15.0-1006.6

4.15.0-1008.8

4.15.0-1010.10

4.15.0-1011.11

4.15.0-1012.12

4.15.0-1016.16

4.15.0-1017.17

4.15.0-1019.19

4.15.0-1020.20

4.15.0-1021.21

4.15.0-1023.23

4.15.0-1025.25

4.15.0-1026.26

4.15.0-1027.27

4.15.0-1028.28

4.15.0-1029.29

4.15.0-1030.30

4.15.0-1031.31

4.15.0-1032.32

4.15.0-1034.34

4.15.0-1035.35

4.15.0-1036.36

4.15.0-1038.38

4.15.0-1039.39

4.15.0-1042.42

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-headers-4.15.0-1043-kvm": "4.15.0-1043.43",
            "linux-image-4.15.0-1043-kvm-dbgsym": "4.15.0-1043.43",
            "linux-modules-4.15.0-1043-kvm": "4.15.0-1043.43",
            "linux-image-4.15.0-1043-kvm": "4.15.0-1043.43",
            "linux-buildinfo-4.15.0-1043-kvm": "4.15.0-1043.43",
            "linux-tools-4.15.0-1043-kvm": "4.15.0-1043.43",
            "linux-kvm-tools-4.15.0-1043": "4.15.0-1043.43",
            "linux-kvm-headers-4.15.0-1043": "4.15.0-1043.43"
        }
    ]
}

Ubuntu:18.04:LTS / linux-oracle

Package

Name: linux-oracle
Purl: pkg:deb/ubuntu/linux-oracle@4.15.0-1022.25?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1022.25

Affected versions

4.*

4.15.0-1007.9

4.15.0-1008.10

4.15.0-1009.11

4.15.0-1010.12

4.15.0-1011.13

4.15.0-1013.15

4.15.0-1014.16

4.15.0-1015.17

4.15.0-1017.19

4.15.0-1018.20

4.15.0-1021.23

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-headers-4.15.0-1022-oracle": "4.15.0-1022.25",
            "linux-oracle-tools-4.15.0-1022": "4.15.0-1022.25",
            "linux-image-unsigned-4.15.0-1022-oracle-dbgsym": "4.15.0-1022.25",
            "linux-oracle-headers-4.15.0-1022": "4.15.0-1022.25",
            "linux-tools-4.15.0-1022-oracle": "4.15.0-1022.25",
            "linux-buildinfo-4.15.0-1022-oracle": "4.15.0-1022.25",
            "linux-modules-4.15.0-1022-oracle": "4.15.0-1022.25",
            "linux-modules-extra-4.15.0-1022-oracle": "4.15.0-1022.25",
            "linux-image-unsigned-4.15.0-1022-oracle": "4.15.0-1022.25"
        }
    ]
}

Ubuntu:18.04:LTS / linux-raspi2

Package

Name: linux-raspi2
Purl: pkg:deb/ubuntu/linux-raspi2@4.15.0-1044.47?arch=src?distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1044.47

Affected versions

4.*

4.13.0-1005.5

4.13.0-1006.6

4.13.0-1008.8

4.15.0-1006.7

4.15.0-1009.10

4.15.0-1010.11

4.15.0-1011.12

4.15.0-1012.13

4.15.0-1013.14

4.15.0-1017.18

4.15.0-1018.19

4.15.0-1020.22

4.15.0-1021.23

4.15.0-1022.24

4.15.0-1024.26

4.15.0-1026.28

4.15.0-1027.29

4.15.0-1028.30

4.15.0-1029.31

4.15.0-1030.32

4.15.0-1031.33

4.15.0-1032.34

4.15.0-1033.35

4.15.0-1034.36

4.15.0-1036.38

4.15.0-1037.39

4.15.0-1038.40

4.15.0-1040.43

4.15.0-1041.44

4.15.0-1043.46

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "linux-raspi2-headers-4.15.0-1044": "4.15.0-1044.47",
            "linux-raspi2-tools-4.15.0-1044": "4.15.0-1044.47",
            "linux-headers-4.15.0-1044-raspi2": "4.15.0-1044.47",
            "linux-tools-4.15.0-1044-raspi2": "4.15.0-1044.47",
            "linux-image-4.15.0-1044-raspi2-dbgsym": "4.15.0-1044.47",
            "linux-buildinfo-4.15.0-1044-raspi2": "4.15.0-1044.47",
            "linux-image-4.15.0-1044-raspi2": "4.15.0-1044.47",
            "linux-modules-4.15.0-1044-raspi2": "4.15.0-1044.47"
        }
    ]
}