{"id":"USN-3981-1","summary":"linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities","details":"Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan\nHorea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa\nMilburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos,\nCristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss\ndiscovered that memory previously stored in microarchitectural fill buffers\nof an Intel CPU core may be exposed to a malicious process that is\nexecuting on the same CPU core. A local attacker could use this to expose\nsensitive information. (CVE-2018-12130)\n\nBrandon Falk, Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Stephan\nvan Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh\nRazavi, Herbert Bos, and Cristiano Giuffrida discovered that memory\npreviously stored in microarchitectural load ports of an Intel CPU core may\nbe exposed to a malicious process that is executing on the same CPU core. A\nlocal attacker could use this to expose sensitive information.\n(CVE-2018-12127)\n\nKe Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Marina Minkin, Daniel\nMoghimi, Moritz Lipp, Michael Schwarz, Jo Van Bulck, Daniel Genkin, Daniel\nGruss, Berk Sunar, Frank Piessens, and Yuval Yarom discovered that memory\npreviously stored in microarchitectural store buffers of an Intel CPU core\nmay be exposed to a malicious process that is executing on the same CPU\ncore. A local attacker could use this to expose sensitive information.\n(CVE-2018-12126)\n\nVasily Averin and Evgenii Shatokhin discovered that a use-after-free\nvulnerability existed in the NFS41+ subsystem when multiple network\nnamespaces are in use. A local attacker in a container could use this to\ncause a denial of service (system crash) or possibly execute arbitrary\ncode. (CVE-2018-16884)\n\nKe Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Volodrmyr Pikhur,\nMoritz Lipp, Michael Schwarz, Daniel Gruss, Stephan van Schaik, Alyssa\nMilburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, and\nCristiano Giuffrida discovered that uncacheable memory previously stored in\nmicroarchitectural buffers of an Intel CPU core may be exposed to a\nmalicious process that is executing on the same CPU core. A local attacker\ncould use this to expose sensitive information. (CVE-2019-11091)\n\nMatteo Croce, Natale Vinto, and Andrea Spagnolo discovered that the cgroups\nsubsystem of the Linux kernel did not properly account for SCTP socket\nbuffers. A local attacker could use this to cause a denial of service\n(system crash). (CVE-2019-3874)\n\nAlex Williamson discovered that the vfio subsystem of the Linux kernel did\nnot properly limit DMA mappings. A local attacker could use this to cause a\ndenial of service (memory exhaustion). (CVE-2019-3882)\n\nHugues Anguelkov discovered that the Broadcom Wifi driver in the Linux\nkernel contained a heap buffer overflow. A physically proximate attacker\ncould use this to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2019-9500)\n\nHugues Anguelkov discovered that the Broadcom Wifi driver in the Linux\nkernel did not properly prevent remote firmware events from being processed\nfor USB Wifi devices. A physically proximate attacker could use this to\nsend firmware events to the device. (CVE-2019-9503)\n","modified":"2026-04-22T09:56:28.370308Z","published":"2019-05-14T21:04:48Z","related":["UBUNTU-CVE-2018-12126","UBUNTU-CVE-2018-12127","UBUNTU-CVE-2018-12130","UBUNTU-CVE-2018-16884","UBUNTU-CVE-2019-11091","UBUNTU-CVE-2019-3874","UBUNTU-CVE-2019-3882","UBUNTU-CVE-2019-9500","UBUNTU-CVE-2019-9503"],"upstream":["CVE-2018-12126","CVE-2018-12127","CVE-2018-12130","CVE-2018-16884","CVE-2019-11091","CVE-2019-3874","CVE-2019-3882","CVE-2019-9500","CVE-2019-9503","UBUNTU-CVE-2018-12126","UBUNTU-CVE-2018-12127","UBUNTU-CVE-2018-12130","UBUNTU-CVE-2018-16884","UBUNTU-CVE-2019-11091","UBUNTU-CVE-2019-3874","UBUNTU-CVE-2019-3882","UBUNTU-CVE-2019-9500","UBUNTU-CVE-2019-9503"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-3981-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-12126"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-12127"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-12130"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-16884"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-3874"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-3882"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-9500"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-9503"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2019-11091"}],"affected":[{"package":{"name":"linux","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux@4.15.0-50.54?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-50.54"}]}],"versions":["4.13.0-16.19","4.13.0-17.20","4.13.0-25.29","4.13.0-32.35","4.15.0-10.11","4.15.0-12.13","4.15.0-13.14","4.15.0-15.16","4.15.0-19.20","4.15.0-20.21","4.15.0-22.24","4.15.0-23.25","4.15.0-24.26","4.15.0-29.31","4.15.0-30.32","4.15.0-32.35","4.15.0-33.36","4.15.0-34.37","4.15.0-36.39","4.15.0-38.41","4.15.0-39.42","4.15.0-42.45","4.15.0-43.46","4.15.0-44.47","4.15.0-45.48","4.15.0-46.49","4.15.0-47.50","4.15.0-48.51"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"block-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"block-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"crypto-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"crypto-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"dasd-extra-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"dasd-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"fat-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"fat-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"fb-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"firewire-core-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"floppy-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"fs-core-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"fs-core-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"fs-secondary-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"fs-secondary-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"input-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"input-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"ipmi-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"ipmi-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"irda-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"irda-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"kernel-image-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"kernel-image-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"linux-buildinfo-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-buildinfo-4.15.0-50-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"linux-buildinfo-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-cloud-tools-4.15.0-50","binary_version":"4.15.0-50.54"},{"binary_name":"linux-cloud-tools-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-cloud-tools-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-cloud-tools-common","binary_version":"4.15.0-50.54"},{"binary_name":"linux-headers-4.15.0-50","binary_version":"4.15.0-50.54"},{"binary_name":"linux-headers-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-headers-4.15.0-50-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"linux-headers-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-image-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-image-4.15.0-50-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"linux-image-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-image-unsigned-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-image-unsigned-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-modules-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-modules-4.15.0-50-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"linux-modules-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-modules-extra-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-source-4.15.0","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-4.15.0-50","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-4.15.0-50-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-4.15.0-50-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-4.15.0-50-lowlatency","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-common","binary_version":"4.15.0-50.54"},{"binary_name":"linux-tools-host","binary_version":"4.15.0-50.54"},{"binary_name":"linux-udebs-generic","binary_version":"4.15.0-50.54"},{"binary_name":"linux-udebs-generic-lpae","binary_version":"4.15.0-50.54"},{"binary_name":"md-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"md-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"message-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"mouse-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"mouse-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"multipath-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"multipath-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"nfs-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"nfs-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-pcmcia-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-shared-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-shared-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-usb-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"nic-usb-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"parport-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"parport-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"pata-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"pcmcia-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"pcmcia-storage-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"plip-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"plip-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"ppp-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"ppp-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"sata-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"sata-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"scsi-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"scsi-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"serial-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"storage-core-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"storage-core-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"usb-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"usb-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"},{"binary_name":"virtio-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"vlan-modules-4.15.0-50-generic-di","binary_version":"4.15.0-50.54"},{"binary_name":"vlan-modules-4.15.0-50-generic-lpae-di","binary_version":"4.15.0-50.54"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-aws","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-aws@4.15.0-1039.41?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1039.41"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1007.7","4.15.0-1009.9","4.15.0-1010.10","4.15.0-1011.11","4.15.0-1016.16","4.15.0-1017.17","4.15.0-1019.19","4.15.0-1020.20","4.15.0-1021.21","4.15.0-1023.23","4.15.0-1025.25","4.15.0-1027.27","4.15.0-1029.30","4.15.0-1031.33","4.15.0-1032.34","4.15.0-1033.35","4.15.0-1034.36","4.15.0-1035.37","4.15.0-1037.39"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-aws-cloud-tools-4.15.0-1039","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-aws-headers-4.15.0-1039","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-aws-tools-4.15.0-1039","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-buildinfo-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-cloud-tools-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-headers-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-image-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-modules-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"},{"binary_name":"linux-tools-4.15.0-1039-aws","binary_version":"4.15.0-1039.41"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-gcp","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-gcp@4.15.0-1032.34?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1032.34"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1008.8","4.15.0-1009.9","4.15.0-1010.10","4.15.0-1014.14","4.15.0-1015.15","4.15.0-1017.18","4.15.0-1018.19","4.15.0-1019.20","4.15.0-1021.22","4.15.0-1023.24","4.15.0-1024.25","4.15.0-1025.26","4.15.0-1026.27","4.15.0-1027.28","4.15.0-1028.29","4.15.0-1029.31","4.15.0-1030.32"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-gcp-headers-4.15.0-1032","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-gcp-tools-4.15.0-1032","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-headers-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-image-unsigned-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-modules-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-modules-extra-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"},{"binary_name":"linux-tools-4.15.0-1032-gcp","binary_version":"4.15.0-1032.34"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-kvm","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-kvm@4.15.0-1034.34?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1034.34"}]}],"versions":["4.15.0-1002.2","4.15.0-1003.3","4.15.0-1004.4","4.15.0-1006.6","4.15.0-1008.8","4.15.0-1010.10","4.15.0-1011.11","4.15.0-1012.12","4.15.0-1016.16","4.15.0-1017.17","4.15.0-1019.19","4.15.0-1020.20","4.15.0-1021.21","4.15.0-1023.23","4.15.0-1025.25","4.15.0-1026.26","4.15.0-1027.27","4.15.0-1028.28","4.15.0-1029.29","4.15.0-1030.30","4.15.0-1031.31","4.15.0-1032.32"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-4.15.0-1034-kvm","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-headers-4.15.0-1034-kvm","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-image-4.15.0-1034-kvm","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-kvm-headers-4.15.0-1034","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-kvm-tools-4.15.0-1034","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-modules-4.15.0-1034-kvm","binary_version":"4.15.0-1034.34"},{"binary_name":"linux-tools-4.15.0-1034-kvm","binary_version":"4.15.0-1034.34"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-oem","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-oem@4.15.0-1038.43?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1038.43"}]}],"versions":["4.15.0-1002.3","4.15.0-1004.5","4.15.0-1006.9","4.15.0-1008.11","4.15.0-1009.12","4.15.0-1012.15","4.15.0-1013.16","4.15.0-1015.18","4.15.0-1017.20","4.15.0-1018.21","4.15.0-1021.24","4.15.0-1024.29","4.15.0-1026.31","4.15.0-1028.33","4.15.0-1030.35","4.15.0-1033.38","4.15.0-1034.39","4.15.0-1035.40","4.15.0-1036.41"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"block-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"crypto-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"fat-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"fb-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"firewire-core-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"floppy-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"fs-core-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"fs-secondary-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"input-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"ipmi-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"irda-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"kernel-image-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-buildinfo-4.15.0-1038-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-headers-4.15.0-1038-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-image-unsigned-4.15.0-1038-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-modules-4.15.0-1038-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-oem-headers-4.15.0-1038","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-oem-tools-4.15.0-1038","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-tools-4.15.0-1038-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"linux-udebs-oem","binary_version":"4.15.0-1038.43"},{"binary_name":"md-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"message-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"mouse-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"multipath-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"nfs-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"nic-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"nic-pcmcia-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"nic-shared-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"nic-usb-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"parport-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"pata-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"pcmcia-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"pcmcia-storage-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"plip-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"ppp-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"sata-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"scsi-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"serial-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"storage-core-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"usb-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"virtio-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"},{"binary_name":"vlan-modules-4.15.0-1038-oem-di","binary_version":"4.15.0-1038.43"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-oracle","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-oracle@4.15.0-1013.15?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1013.15"}]}],"versions":["4.15.0-1007.9","4.15.0-1008.10","4.15.0-1009.11","4.15.0-1010.12","4.15.0-1011.13"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-headers-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-image-unsigned-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-modules-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-modules-extra-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-oracle-headers-4.15.0-1013","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-oracle-tools-4.15.0-1013","binary_version":"4.15.0-1013.15"},{"binary_name":"linux-tools-4.15.0-1013-oracle","binary_version":"4.15.0-1013.15"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-raspi2","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-raspi2@4.15.0-1036.38?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1036.38"}]}],"versions":["4.13.0-1005.5","4.13.0-1006.6","4.13.0-1008.8","4.15.0-1006.7","4.15.0-1009.10","4.15.0-1010.11","4.15.0-1011.12","4.15.0-1012.13","4.15.0-1013.14","4.15.0-1017.18","4.15.0-1018.19","4.15.0-1020.22","4.15.0-1021.23","4.15.0-1022.24","4.15.0-1024.26","4.15.0-1026.28","4.15.0-1027.29","4.15.0-1028.30","4.15.0-1029.31","4.15.0-1030.32","4.15.0-1031.33","4.15.0-1032.34","4.15.0-1033.35","4.15.0-1034.36"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-4.15.0-1036-raspi2","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-headers-4.15.0-1036-raspi2","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-image-4.15.0-1036-raspi2","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-modules-4.15.0-1036-raspi2","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-raspi2-headers-4.15.0-1036","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-raspi2-tools-4.15.0-1036","binary_version":"4.15.0-1036.38"},{"binary_name":"linux-tools-4.15.0-1036-raspi2","binary_version":"4.15.0-1036.38"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}},{"package":{"name":"linux-snapdragon","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-snapdragon@4.15.0-1053.57?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1053.57"}]}],"versions":["4.4.0-1077.82","4.4.0-1078.83","4.4.0-1079.84","4.4.0-1081.86"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"linux-buildinfo-4.15.0-1053-snapdragon","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-headers-4.15.0-1053-snapdragon","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-image-4.15.0-1053-snapdragon","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-modules-4.15.0-1053-snapdragon","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-snapdragon-headers-4.15.0-1053","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-snapdragon-tools-4.15.0-1053","binary_version":"4.15.0-1053.57"},{"binary_name":"linux-tools-4.15.0-1053-snapdragon","binary_version":"4.15.0-1053.57"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2018-12126","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12127","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-12130","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"high"}]},{"id":"CVE-2018-16884","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3874","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-3882","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2019-9500","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-9503","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2019-11091","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3981-1.json"}}],"schema_version":"1.7.5"}