{"id":"USN-3678-1","summary":"linux, linux-aws, linux-gcp, linux-kvm vulnerabilities","details":"Wen Xu discovered that the ext4 filesystem implementation in the Linux\nkernel did not properly handle corrupted meta data in some situations. An\nattacker could use this to specially craft an ext4 filesystem that caused\na denial of service (system crash) when mounted. (CVE-2018-1092)\n\nIt was discovered that the 802.11 software simulator implementation in the\nLinux kernel contained a memory leak when handling certain error\nconditions. A local attacker could possibly use this to cause a denial of\nservice (memory exhaustion). (CVE-2018-8087)\n\nIt was discovered that a memory leak existed in the Serial Attached SCSI\n(SAS) implementation in the Linux kernel. A physically proximate attacker\ncould use this to cause a denial of service (memory exhaustion).\n(CVE-2018-10021)\n","modified":"2026-02-10T04:41:21Z","published":"2018-06-12T00:36:40Z","related":["UBUNTU-CVE-2018-10021","UBUNTU-CVE-2018-1092","UBUNTU-CVE-2018-8087"],"upstream":["CVE-2018-10021","CVE-2018-1092","CVE-2018-8087","UBUNTU-CVE-2018-10021","UBUNTU-CVE-2018-1092","UBUNTU-CVE-2018-8087"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-3678-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-1092"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-8087"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-10021"}],"affected":[{"package":{"name":"linux","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux@4.15.0-23.25?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-23.25"}]}],"versions":["4.13.0-16.19","4.13.0-17.20","4.13.0-25.29","4.13.0-32.35","4.15.0-10.11","4.15.0-12.13","4.15.0-13.14","4.15.0-15.16","4.15.0-19.20","4.15.0-20.21","4.15.0-22.24"],"ecosystem_specific":{"binaries":[{"binary_version":"4.15.0-23.25","binary_name":"block-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"block-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"block-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"crypto-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"crypto-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"crypto-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"dasd-extra-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"dasd-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"fat-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"fat-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"fat-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"fb-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"firewire-core-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"floppy-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-core-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-core-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-core-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-secondary-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-secondary-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"fs-secondary-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"input-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"input-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"input-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"ipmi-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"ipmi-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"ipmi-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"irda-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"irda-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"irda-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"kernel-image-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"kernel-image-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"kernel-image-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"linux-cloud-tools-4.15.0-23"},{"binary_version":"4.15.0-23.25","binary_name":"linux-cloud-tools-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-cloud-tools-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-cloud-tools-common"},{"binary_version":"4.15.0-23.25","binary_name":"linux-headers-4.15.0-23"},{"binary_version":"4.15.0-23.25","binary_name":"linux-headers-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-headers-4.15.0-23-generic-lpae"},{"binary_version":"4.15.0-23.25","binary_name":"linux-headers-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-headers-4.15.0-23-snapdragon"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-4.15.0-23-generic-lpae"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-4.15.0-23-snapdragon"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-unsigned-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-image-unsigned-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-libc-dev"},{"binary_version":"4.15.0-23.25","binary_name":"linux-modules-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-modules-4.15.0-23-generic-lpae"},{"binary_version":"4.15.0-23.25","binary_name":"linux-modules-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-modules-4.15.0-23-snapdragon"},{"binary_version":"4.15.0-23.25","binary_name":"linux-modules-extra-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-source-4.15.0"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-4.15.0-23"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-4.15.0-23-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-4.15.0-23-generic-lpae"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-4.15.0-23-lowlatency"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-4.15.0-23-snapdragon"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-common"},{"binary_version":"4.15.0-23.25","binary_name":"linux-tools-host"},{"binary_version":"4.15.0-23.25","binary_name":"linux-udebs-generic"},{"binary_version":"4.15.0-23.25","binary_name":"linux-udebs-generic-lpae"},{"binary_version":"4.15.0-23.25","binary_name":"linux-udebs-snapdragon"},{"binary_version":"4.15.0-23.25","binary_name":"md-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"md-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"md-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"message-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"message-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"mouse-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"mouse-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"mouse-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"multipath-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"multipath-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"multipath-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"nfs-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"nfs-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"nfs-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-pcmcia-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-shared-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-shared-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-shared-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-usb-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-usb-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"nic-usb-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"parport-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"parport-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"parport-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"pata-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"pcmcia-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"pcmcia-storage-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"plip-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"plip-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"plip-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"ppp-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"ppp-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"ppp-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"sata-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"sata-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"sata-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"scsi-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"scsi-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"scsi-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"serial-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"storage-core-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"storage-core-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"storage-core-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"usb-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"usb-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"usb-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"virtio-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"virtio-modules-4.15.0-23-snapdragon-di"},{"binary_version":"4.15.0-23.25","binary_name":"vlan-modules-4.15.0-23-generic-di"},{"binary_version":"4.15.0-23.25","binary_name":"vlan-modules-4.15.0-23-generic-lpae-di"},{"binary_version":"4.15.0-23.25","binary_name":"vlan-modules-4.15.0-23-snapdragon-di"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3678-1.json","cves_map":{"cves":[{"id":"CVE-2018-1092","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2018-8087","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2018-10021","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-aws","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-aws@4.15.0-1010.10?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1010.10"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1007.7","4.15.0-1009.9"],"ecosystem_specific":{"binaries":[{"binary_version":"4.15.0-1010.10","binary_name":"linux-aws-headers-4.15.0-1010"},{"binary_version":"4.15.0-1010.10","binary_name":"linux-aws-tools-4.15.0-1010"},{"binary_version":"4.15.0-1010.10","binary_name":"linux-headers-4.15.0-1010-aws"},{"binary_version":"4.15.0-1010.10","binary_name":"linux-image-4.15.0-1010-aws"},{"binary_version":"4.15.0-1010.10","binary_name":"linux-modules-4.15.0-1010-aws"},{"binary_version":"4.15.0-1010.10","binary_name":"linux-tools-4.15.0-1010-aws"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3678-1.json","cves_map":{"cves":[{"id":"CVE-2018-1092","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2018-8087","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2018-10021","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-gcp","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-gcp@4.15.0-1009.9?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1009.9"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1008.8"],"ecosystem_specific":{"binaries":[{"binary_version":"4.15.0-1009.9","binary_name":"linux-gcp-headers-4.15.0-1009"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-gcp-tools-4.15.0-1009"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-headers-4.15.0-1009-gcp"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-image-4.15.0-1009-gcp"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-modules-4.15.0-1009-gcp"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-modules-extra-4.15.0-1009-gcp"},{"binary_version":"4.15.0-1009.9","binary_name":"linux-tools-4.15.0-1009-gcp"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3678-1.json","cves_map":{"cves":[{"id":"CVE-2018-1092","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2018-8087","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2018-10021","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-kvm","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-kvm@4.15.0-1011.11?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1011.11"}]}],"versions":["4.15.0-1002.2","4.15.0-1003.3","4.15.0-1004.4","4.15.0-1006.6","4.15.0-1008.8","4.15.0-1010.10"],"ecosystem_specific":{"binaries":[{"binary_version":"4.15.0-1011.11","binary_name":"linux-headers-4.15.0-1011-kvm"},{"binary_version":"4.15.0-1011.11","binary_name":"linux-image-4.15.0-1011-kvm"},{"binary_version":"4.15.0-1011.11","binary_name":"linux-kvm-headers-4.15.0-1011"},{"binary_version":"4.15.0-1011.11","binary_name":"linux-kvm-tools-4.15.0-1011"},{"binary_version":"4.15.0-1011.11","binary_name":"linux-modules-4.15.0-1011-kvm"},{"binary_version":"4.15.0-1011.11","binary_name":"linux-tools-4.15.0-1011-kvm"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3678-1.json","cves_map":{"cves":[{"id":"CVE-2018-1092","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2018-8087","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}]},{"id":"CVE-2018-10021","severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"negligible","type":"Ubuntu"}]}],"ecosystem":"Ubuntu:18.04:LTS"}}}],"schema_version":"1.7.3"}