{"id":"USN-3654-1","summary":"linux, linux-aws, linux-kvm, vulnerabilities","details":"Jann Horn and Ken Johnson discovered that microprocessors utilizing\nspeculative execution of a memory read may allow unauthorized memory\nreads via a sidechannel attack. This flaw is known as Spectre\nVariant 4. A local attacker could use this to expose sensitive\ninformation, including kernel memory. (CVE-2018-3639)\n\nTuba Yavuz discovered that a double-free error existed in the USBTV007\ndriver of the Linux kernel. A local attacker could use this to cause a\ndenial of service (system crash) or possibly execute arbitrary code.\n(CVE-2017-17975)\n\nIt was discovered that a race condition existed in the F2FS implementation\nin the Linux kernel. A local attacker could use this to cause a denial of\nservice (system crash). (CVE-2017-18193)\n\nIt was discovered that a buffer overflow existed in the Hisilicon HNS\nEthernet Device driver in the Linux kernel. A local attacker could use this\nto cause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2017-18222)\n\nIt was discovered that the netfilter subsystem in the Linux kernel did not\nvalidate that rules containing jumps contained user-defined chains. A local\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2018-1065)\n\nIt was discovered that the netfilter subsystem of the Linux kernel did not\nproperly validate ebtables offsets. A local attacker could use this to\ncause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2018-1068)\n\nIt was discovered that a null pointer dereference vulnerability existed in\nthe DCCP protocol implementation in the Linux kernel. A local attacker\ncould use this to cause a denial of service (system crash). (CVE-2018-1130)\n\nIt was discovered that the SCTP Protocol implementation in the Linux kernel\ndid not properly validate userspace provided payload lengths in some\nsituations. A local attacker could use this to cause a denial of service\n(system crash). (CVE-2018-5803)\n\nIt was discovered that a double free error existed in the block layer\nsubsystem of the Linux kernel when setting up a request queue. A local\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2018-7480)\n\nIt was discovered that a memory leak existed in the SAS driver subsystem of\nthe Linux kernel. A local attacker could use this to cause a denial of\nservice (memory exhaustion). (CVE-2018-7757)\n\nIt was discovered that a race condition existed in the x86 machine check\nhandler in the Linux kernel. A local privileged attacker could use this to\ncause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2018-7995)\n\nEyal Itkin discovered that the USB displaylink video adapter driver in the\nLinux kernel did not properly validate mmap offsets sent from userspace. A\nlocal attacker could use this to expose sensitive information (kernel\nmemory) or possibly execute arbitrary code. (CVE-2018-8781)\n\nSilvio Cesare discovered a buffer overwrite existed in the NCPFS\nimplementation in the Linux kernel. A remote attacker controlling a\nmalicious NCPFS server could use this to cause a denial of service (system\ncrash) or possibly execute arbitrary code. (CVE-2018-8822)\n","modified":"2026-04-27T15:33:04.663574003Z","published":"2018-05-22T03:33:44Z","related":["UBUNTU-CVE-2017-17975","UBUNTU-CVE-2017-18193","UBUNTU-CVE-2017-18222","UBUNTU-CVE-2018-1065","UBUNTU-CVE-2018-1068","UBUNTU-CVE-2018-1130","UBUNTU-CVE-2018-3639","UBUNTU-CVE-2018-5803","UBUNTU-CVE-2018-7480","UBUNTU-CVE-2018-7757","UBUNTU-CVE-2018-7995","UBUNTU-CVE-2018-8781","UBUNTU-CVE-2018-8822"],"upstream":["CVE-2017-17975","CVE-2017-18193","CVE-2017-18222","CVE-2018-1065","CVE-2018-1068","CVE-2018-1130","CVE-2018-3639","CVE-2018-5803","CVE-2018-7480","CVE-2018-7757","CVE-2018-7995","CVE-2018-8781","CVE-2018-8822","UBUNTU-CVE-2017-17975","UBUNTU-CVE-2017-18193","UBUNTU-CVE-2017-18222","UBUNTU-CVE-2018-1065","UBUNTU-CVE-2018-1068","UBUNTU-CVE-2018-1130","UBUNTU-CVE-2018-3639","UBUNTU-CVE-2018-5803","UBUNTU-CVE-2018-7480","UBUNTU-CVE-2018-7757","UBUNTU-CVE-2018-7995","UBUNTU-CVE-2018-8781","UBUNTU-CVE-2018-8822"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-3654-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-17975"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-18193"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-18222"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-1065"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-1068"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-1130"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-3639"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-5803"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-7480"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-7757"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-7995"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-8781"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-8822"}],"affected":[{"package":{"name":"linux","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/linux@4.4.0-127.153?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.0-127.153"}]}],"versions":["4.2.0-16.19","4.2.0-17.21","4.2.0-19.23","4.3.0-1.10","4.3.0-2.11","4.3.0-5.16","4.3.0-6.17","4.3.0-7.18","4.4.0-2.16","4.4.0-4.19","4.4.0-6.21","4.4.0-7.22","4.4.0-8.23","4.4.0-9.24","4.4.0-10.25","4.4.0-11.26","4.4.0-12.28","4.4.0-13.29","4.4.0-14.30","4.4.0-15.31","4.4.0-16.32","4.4.0-17.33","4.4.0-18.34","4.4.0-21.37","4.4.0-22.39","4.4.0-22.40","4.4.0-24.43","4.4.0-28.47","4.4.0-31.50","4.4.0-34.53","4.4.0-36.55","4.4.0-38.57","4.4.0-42.62","4.4.0-43.63","4.4.0-45.66","4.4.0-47.68","4.4.0-51.72","4.4.0-53.74","4.4.0-57.78","4.4.0-59.80","4.4.0-62.83","4.4.0-63.84","4.4.0-64.85","4.4.0-65.86","4.4.0-66.87","4.4.0-67.88","4.4.0-70.91","4.4.0-71.92","4.4.0-72.93","4.4.0-75.96","4.4.0-77.98","4.4.0-78.99","4.4.0-79.100","4.4.0-81.104","4.4.0-83.106","4.4.0-87.110","4.4.0-89.112","4.4.0-91.114","4.4.0-92.115","4.4.0-93.116","4.4.0-96.119","4.4.0-97.120","4.4.0-98.121","4.4.0-101.124","4.4.0-103.126","4.4.0-104.127","4.4.0-108.131","4.4.0-109.132","4.4.0-112.135","4.4.0-116.140","4.4.0-119.143","4.4.0-121.145","4.4.0-122.146","4.4.0-124.148"],"ecosystem_specific":{"binaries":[{"binary_version":"4.4.0-127.153","binary_name":"block-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"block-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"block-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"block-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"block-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"crypto-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"crypto-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"crypto-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"crypto-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"crypto-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"dasd-extra-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"dasd-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"fat-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"fat-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"fat-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"fat-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fat-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fb-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"firewire-core-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"firewire-core-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"firewire-core-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"firewire-core-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"floppy-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"floppy-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"floppy-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"floppy-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-core-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-core-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-core-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-core-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-core-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-secondary-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-secondary-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-secondary-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-secondary-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"fs-secondary-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"input-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"input-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"input-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"input-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"input-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"ipmi-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"ipmi-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"ipmi-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"ipmi-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"ipmi-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"irda-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"irda-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"irda-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"irda-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"irda-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"kernel-image-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"kernel-image-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"kernel-image-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"kernel-image-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"kernel-image-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"linux-cloud-tools-4.4.0-127"},{"binary_version":"4.4.0-127.153","binary_name":"linux-cloud-tools-4.4.0-127-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-cloud-tools-4.4.0-127-lowlatency"},{"binary_version":"4.4.0-127.153","binary_name":"linux-cloud-tools-common"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-generic-lpae"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-lowlatency"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-powerpc-e500mc"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-powerpc-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-powerpc64-emb"},{"binary_version":"4.4.0-127.153","binary_name":"linux-headers-4.4.0-127-powerpc64-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-generic-lpae"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-lowlatency"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-powerpc-e500mc"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-powerpc-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-powerpc64-emb"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-4.4.0-127-powerpc64-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-image-extra-4.4.0-127-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-source-4.4.0"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-generic-lpae"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-lowlatency"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-powerpc-e500mc"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-powerpc-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-powerpc64-emb"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-4.4.0-127-powerpc64-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-tools-common"},{"binary_version":"4.4.0-127.153","binary_name":"linux-udebs-generic"},{"binary_version":"4.4.0-127.153","binary_name":"linux-udebs-generic-lpae"},{"binary_version":"4.4.0-127.153","binary_name":"linux-udebs-powerpc-e500mc"},{"binary_version":"4.4.0-127.153","binary_name":"linux-udebs-powerpc-smp"},{"binary_version":"4.4.0-127.153","binary_name":"linux-udebs-powerpc64-smp"},{"binary_version":"4.4.0-127.153","binary_name":"md-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"md-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"md-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"md-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"md-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"message-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"message-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"message-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"message-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"mouse-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"mouse-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"mouse-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"mouse-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"mouse-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"multipath-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"multipath-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"multipath-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"multipath-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"multipath-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nfs-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"nfs-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"nfs-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"nfs-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nfs-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-pcmcia-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-shared-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-shared-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-shared-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-shared-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-shared-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-usb-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-usb-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-usb-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-usb-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"nic-usb-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"parport-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"parport-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"parport-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"parport-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"parport-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"pata-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"pata-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"pata-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"pata-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"pcmcia-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"pcmcia-storage-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"plip-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"plip-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"plip-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"plip-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"plip-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"ppp-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"ppp-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"ppp-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"ppp-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"ppp-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"sata-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"sata-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"sata-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"sata-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"sata-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"scsi-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"scsi-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"scsi-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"scsi-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"scsi-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"serial-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"speakup-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"speakup-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"speakup-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"speakup-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"speakup-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"storage-core-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"storage-core-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"storage-core-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"storage-core-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"storage-core-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"usb-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"usb-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"usb-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"usb-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"usb-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"virtio-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"virtio-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"virtio-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"virtio-modules-4.4.0-127-powerpc64-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"vlan-modules-4.4.0-127-generic-di"},{"binary_version":"4.4.0-127.153","binary_name":"vlan-modules-4.4.0-127-generic-lpae-di"},{"binary_version":"4.4.0-127.153","binary_name":"vlan-modules-4.4.0-127-powerpc-e500mc-di"},{"binary_version":"4.4.0-127.153","binary_name":"vlan-modules-4.4.0-127-powerpc-smp-di"},{"binary_version":"4.4.0-127.153","binary_name":"vlan-modules-4.4.0-127-powerpc64-smp-di"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3654-1.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2017-17975"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2017-18193"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2017-18222"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1065"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1068"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1130"},{"id":"CVE-2018-3639","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-5803"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-7480"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-7757"},{"id":"CVE-2018-7995","severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8781"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8822"}]}}},{"package":{"name":"linux-aws","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/linux-aws@4.4.0-1060.69?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.0-1060.69"}]}],"versions":["4.4.0-1001.10","4.4.0-1003.12","4.4.0-1004.13","4.4.0-1007.16","4.4.0-1009.18","4.4.0-1011.20","4.4.0-1012.21","4.4.0-1013.22","4.4.0-1016.25","4.4.0-1017.26","4.4.0-1018.27","4.4.0-1020.29","4.4.0-1022.31","4.4.0-1026.35","4.4.0-1028.37","4.4.0-1030.39","4.4.0-1031.40","4.4.0-1032.41","4.4.0-1035.44","4.4.0-1037.46","4.4.0-1038.47","4.4.0-1039.48","4.4.0-1041.50","4.4.0-1043.52","4.4.0-1044.53","4.4.0-1047.56","4.4.0-1048.57","4.4.0-1049.58","4.4.0-1050.59","4.4.0-1052.61","4.4.0-1054.63","4.4.0-1055.64","4.4.0-1057.66"],"ecosystem_specific":{"binaries":[{"binary_version":"4.4.0-1060.69","binary_name":"linux-aws-cloud-tools-4.4.0-1060"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-aws-headers-4.4.0-1060"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-aws-tools-4.4.0-1060"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-cloud-tools-4.4.0-1060-aws"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-headers-4.4.0-1060-aws"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-image-4.4.0-1060-aws"},{"binary_version":"4.4.0-1060.69","binary_name":"linux-tools-4.4.0-1060-aws"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3654-1.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2017-17975"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2017-18193"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2017-18222"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1065"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1068"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1130"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-3639"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-5803"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-7480"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-7757"},{"id":"CVE-2018-7995","severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8781"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8822"}]}}},{"package":{"name":"linux-kvm","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/linux-kvm@4.4.0-1026.31?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.0-1026.31"}]}],"versions":["4.4.0-1004.9","4.4.0-1007.12","4.4.0-1008.13","4.4.0-1009.14","4.4.0-1010.15","4.4.0-1012.17","4.4.0-1013.18","4.4.0-1015.20","4.4.0-1017.22","4.4.0-1019.24","4.4.0-1020.25","4.4.0-1021.26","4.4.0-1023.28"],"ecosystem_specific":{"binaries":[{"binary_version":"4.4.0-1026.31","binary_name":"linux-cloud-tools-4.4.0-1026-kvm"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-headers-4.4.0-1026-kvm"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-image-4.4.0-1026-kvm"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-kvm-cloud-tools-4.4.0-1026"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-kvm-headers-4.4.0-1026"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-kvm-tools-4.4.0-1026"},{"binary_version":"4.4.0-1026.31","binary_name":"linux-tools-4.4.0-1026-kvm"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3654-1.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2017-17975"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2017-18193"},{"id":"CVE-2017-18222","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1065"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1068"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-1130"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-3639"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-5803"},{"id":"CVE-2018-7480","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-7757"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}],"id":"CVE-2018-7995"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8781"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-8822"}]}}}],"schema_version":"1.7.5"}