usn-3872-1
Vulnerability from osv_ubuntu
Published
2019-01-29 02:54
Modified
2026-02-10 04:41
Summary
linux-hwe vulnerabilities
Details

It was discovered that a race condition existed in the vsock address family implementation of the Linux kernel that could lead to a use-after-free condition. A local attacker in a guest virtual machine could use this to expose sensitive information (host machine kernel memory). (CVE-2018-14625)

Cfir Cohen discovered that a use-after-free vulnerability existed in the KVM implementation of the Linux kernel, when handling interrupts in environments where nested virtualization is in use (nested KVM virtualization is not enabled by default in Ubuntu kernels). A local attacker in a guest VM could possibly use this to gain administrative privileges in a host machine. (CVE-2018-16882)

Wei Wu discovered that the KVM implementation in the Linux kernel did not properly ensure that ioapics were initialized. A local attacker could use this to cause a denial of service (system crash). (CVE-2018-19407)

It was discovered that the crypto subsystem of the Linux kernel leaked uninitialized memory to user space in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2018-19854)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2018-14625",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-16882",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-19407",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-19854",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "block-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "block-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "block-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "crypto-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "dasd-extra-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "dasd-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fat-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fb-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "floppy-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "input-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "kernel-image-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-14-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-buildinfo-4.18.0-14-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-14",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-14-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-headers-4.18.0-14-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-hwe-cloud-tools-4.18.0-14",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-hwe-tools-4.18.0-14",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-hwe-udebs-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-14-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-4.18.0-14-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-image-unsigned-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-14-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-modules-4.18.0-14-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-modules-extra-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-source-4.18.0",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-14-generic",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-14-generic-lpae",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-14-lowlatency",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "linux-tools-4.18.0-14-snapdragon",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "md-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "message-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "message-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "mouse-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "multipath-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nfs-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-pcmcia-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "parport-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "pata-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "pcmcia-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "pcmcia-storage-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "plip-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "ppp-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "sata-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "scsi-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "serial-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "usb-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "virtio-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "virtio-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-14-generic-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-14-generic-lpae-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          },
          {
            "binary_name": "vlan-modules-4.18.0-14-snapdragon-di",
            "binary_version": "4.18.0-14.15~18.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:18.04:LTS",
        "name": "linux-hwe",
        "purl": "pkg:deb/ubuntu/linux-hwe@4.18.0-14.15~18.04.1?arch=source\u0026distro=bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.18.0-14.15~18.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "4.18.0-13.14~18.04.1"
      ]
    }
  ],
  "aliases": [],
  "details": "It was discovered that a race condition existed in the vsock address family\nimplementation of the Linux kernel that could lead to a use-after-free\ncondition. A local attacker in a guest virtual machine could use this to\nexpose sensitive information (host machine kernel memory). (CVE-2018-14625)\n\nCfir Cohen discovered that a use-after-free vulnerability existed in the\nKVM implementation of the Linux kernel, when handling interrupts in\nenvironments where nested virtualization is in use (nested KVM\nvirtualization is not enabled by default in Ubuntu kernels). A local\nattacker in a guest VM could possibly use this to gain administrative\nprivileges in a host machine. (CVE-2018-16882)\n\nWei Wu discovered that the KVM implementation in the Linux kernel did not\nproperly ensure that ioapics were initialized. A local attacker could use\nthis to cause a denial of service (system crash). (CVE-2018-19407)\n\nIt was discovered that the crypto subsystem of the Linux kernel leaked\nuninitialized memory to user space in some situations. A local attacker\ncould use this to expose sensitive information (kernel memory).\n(CVE-2018-19854)\n",
  "id": "USN-3872-1",
  "modified": "2026-02-10T04:41:28Z",
  "published": "2019-01-29T02:54:09Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-3872-1"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-14625"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-16882"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-19407"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-19854"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "linux-hwe vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2018-14625",
    "UBUNTU-CVE-2018-16882",
    "UBUNTU-CVE-2018-19407",
    "UBUNTU-CVE-2018-19854"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…