{"id":"USN-3847-1","summary":"linux, linux-aws, linux-azure, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities","details":"It was discovered that a race condition existed in the raw MIDI driver for\nthe Linux kernel, leading to a double free vulnerability. A local attacker\ncould use this to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2018-10902)\n\nIt was discovered that an integer overrun vulnerability existed in the\nPOSIX timers implementation in the Linux kernel. A local attacker could use\nthis to cause a denial of service. (CVE-2018-12896)\n\nNoam Rathaus discovered that a use-after-free vulnerability existed in the\nInfiniband implementation in the Linux kernel. An attacker could use this\nto cause a denial of service (system crash). (CVE-2018-14734)\n\nIt was discovered that the YUREX USB device driver for the Linux kernel did\nnot properly restrict user space reads or writes. A physically proximate\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2018-16276)\n\nIt was discovered that the BPF verifier in the Linux kernel did not\ncorrectly compute numeric bounds in some situations. A local attacker could\nuse this to cause a denial of service (system crash) or possibly execute\narbitrary code. (CVE-2018-18445)\n\nKanda Motohiro discovered that writing extended attributes to an XFS file\nsystem in the Linux kernel in certain situations could cause an error\ncondition to occur. A local attacker could use this to cause a denial of\nservice. (CVE-2018-18690)\n\nIt was discovered that an integer overflow vulnerability existed in the\nCDROM driver of the Linux kernel. A local attacker could use this to expose\nsensitive information (kernel memory). (CVE-2018-18710)\n","modified":"2026-02-10T04:41:27Z","published":"2018-12-20T22:39:41Z","related":["UBUNTU-CVE-2018-10902","UBUNTU-CVE-2018-12896","UBUNTU-CVE-2018-14734","UBUNTU-CVE-2018-16276","UBUNTU-CVE-2018-18445","UBUNTU-CVE-2018-18690","UBUNTU-CVE-2018-18710"],"upstream":["CVE-2018-10902","CVE-2018-12896","CVE-2018-14734","CVE-2018-16276","CVE-2018-18445","CVE-2018-18690","CVE-2018-18710","UBUNTU-CVE-2018-10902","UBUNTU-CVE-2018-12896","UBUNTU-CVE-2018-14734","UBUNTU-CVE-2018-16276","UBUNTU-CVE-2018-18445","UBUNTU-CVE-2018-18690","UBUNTU-CVE-2018-18710"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-3847-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-10902"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-12896"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-14734"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-16276"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-18445"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-18690"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-18710"}],"affected":[{"package":{"name":"linux","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux@4.15.0-43.46?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-43.46"}]}],"versions":["4.13.0-16.19","4.13.0-17.20","4.13.0-25.29","4.13.0-32.35","4.15.0-10.11","4.15.0-12.13","4.15.0-13.14","4.15.0-15.16","4.15.0-19.20","4.15.0-20.21","4.15.0-22.24","4.15.0-23.25","4.15.0-24.26","4.15.0-29.31","4.15.0-30.32","4.15.0-32.35","4.15.0-33.36","4.15.0-34.37","4.15.0-36.39","4.15.0-38.41","4.15.0-39.42","4.15.0-42.45"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-43.46","binary_name":"block-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"block-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"block-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"crypto-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"crypto-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"crypto-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"dasd-extra-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"dasd-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"fat-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"fat-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"fat-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"fb-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"firewire-core-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"floppy-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-core-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-core-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-core-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-secondary-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-secondary-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"fs-secondary-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"input-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"input-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"input-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"ipmi-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"ipmi-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"ipmi-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"irda-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"irda-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"irda-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"kernel-image-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"kernel-image-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"kernel-image-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"linux-buildinfo-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-buildinfo-4.15.0-43-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-buildinfo-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-buildinfo-4.15.0-43-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"linux-cloud-tools-4.15.0-43"},{"binary_version":"4.15.0-43.46","binary_name":"linux-cloud-tools-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-cloud-tools-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-cloud-tools-common"},{"binary_version":"4.15.0-43.46","binary_name":"linux-headers-4.15.0-43"},{"binary_version":"4.15.0-43.46","binary_name":"linux-headers-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-headers-4.15.0-43-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-headers-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-headers-4.15.0-43-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-4.15.0-43-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-4.15.0-43-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-unsigned-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-image-unsigned-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-libc-dev"},{"binary_version":"4.15.0-43.46","binary_name":"linux-modules-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-modules-4.15.0-43-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-modules-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-modules-4.15.0-43-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"linux-modules-extra-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-source-4.15.0"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-4.15.0-43"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-4.15.0-43-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-4.15.0-43-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-4.15.0-43-lowlatency"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-4.15.0-43-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-common"},{"binary_version":"4.15.0-43.46","binary_name":"linux-tools-host"},{"binary_version":"4.15.0-43.46","binary_name":"linux-udebs-generic"},{"binary_version":"4.15.0-43.46","binary_name":"linux-udebs-generic-lpae"},{"binary_version":"4.15.0-43.46","binary_name":"linux-udebs-snapdragon"},{"binary_version":"4.15.0-43.46","binary_name":"md-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"md-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"md-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"message-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"message-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"mouse-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"mouse-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"mouse-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"multipath-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"multipath-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"multipath-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"nfs-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"nfs-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"nfs-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-pcmcia-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-shared-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-shared-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-shared-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-usb-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-usb-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"nic-usb-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"parport-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"parport-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"parport-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"pata-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"pcmcia-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"pcmcia-storage-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"plip-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"plip-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"plip-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"ppp-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"ppp-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"ppp-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"sata-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"sata-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"sata-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"scsi-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"scsi-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"scsi-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"serial-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"storage-core-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"storage-core-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"storage-core-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"usb-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"usb-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"usb-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"virtio-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"virtio-modules-4.15.0-43-snapdragon-di"},{"binary_version":"4.15.0-43.46","binary_name":"vlan-modules-4.15.0-43-generic-di"},{"binary_version":"4.15.0-43.46","binary_name":"vlan-modules-4.15.0-43-generic-lpae-di"},{"binary_version":"4.15.0-43.46","binary_name":"vlan-modules-4.15.0-43-snapdragon-di"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-aws","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-aws@4.15.0-1031.33?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1031.33"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1007.7","4.15.0-1009.9","4.15.0-1010.10","4.15.0-1011.11","4.15.0-1016.16","4.15.0-1017.17","4.15.0-1019.19","4.15.0-1020.20","4.15.0-1021.21","4.15.0-1023.23","4.15.0-1025.25","4.15.0-1027.27","4.15.0-1029.30"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1031.33","binary_name":"linux-aws-cloud-tools-4.15.0-1031"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-aws-headers-4.15.0-1031"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-aws-tools-4.15.0-1031"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-buildinfo-4.15.0-1031-aws"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-cloud-tools-4.15.0-1031-aws"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-headers-4.15.0-1031-aws"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-image-4.15.0-1031-aws"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-modules-4.15.0-1031-aws"},{"binary_version":"4.15.0-1031.33","binary_name":"linux-tools-4.15.0-1031-aws"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-azure","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-azure@4.15.0-1036.38?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1036.38"}]}],"versions":["4.15.0-1002.2","4.15.0-1003.3","4.15.0-1004.4","4.15.0-1008.8","4.15.0-1009.9","4.15.0-1012.12","4.15.0-1013.13","4.15.0-1014.14","4.15.0-1018.18","4.15.0-1019.19","4.15.0-1021.21","4.15.0-1022.23","4.15.0-1023.24","4.15.0-1025.26","4.15.0-1028.29","4.15.0-1030.31","4.15.0-1031.32","4.15.0-1032.33","4.15.0-1035.36"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1036.38","binary_name":"linux-azure-cloud-tools-4.15.0-1036"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-azure-headers-4.15.0-1036"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-azure-tools-4.15.0-1036"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-buildinfo-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-cloud-tools-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-headers-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-image-unsigned-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-modules-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-modules-extra-4.15.0-1036-azure"},{"binary_version":"4.15.0-1036.38","binary_name":"linux-tools-4.15.0-1036-azure"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-gcp","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-gcp@4.15.0-1026.27?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1026.27"}]}],"versions":["4.15.0-1001.1","4.15.0-1003.3","4.15.0-1005.5","4.15.0-1006.6","4.15.0-1008.8","4.15.0-1009.9","4.15.0-1010.10","4.15.0-1014.14","4.15.0-1015.15","4.15.0-1017.18","4.15.0-1018.19","4.15.0-1019.20","4.15.0-1021.22","4.15.0-1023.24","4.15.0-1024.25","4.15.0-1025.26"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1026.27","binary_name":"linux-buildinfo-4.15.0-1026-gcp"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-gcp-headers-4.15.0-1026"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-gcp-tools-4.15.0-1026"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-headers-4.15.0-1026-gcp"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-image-unsigned-4.15.0-1026-gcp"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-modules-4.15.0-1026-gcp"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-modules-extra-4.15.0-1026-gcp"},{"binary_version":"4.15.0-1026.27","binary_name":"linux-tools-4.15.0-1026-gcp"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-kvm","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-kvm@4.15.0-1028.28?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1028.28"}]}],"versions":["4.15.0-1002.2","4.15.0-1003.3","4.15.0-1004.4","4.15.0-1006.6","4.15.0-1008.8","4.15.0-1010.10","4.15.0-1011.11","4.15.0-1012.12","4.15.0-1016.16","4.15.0-1017.17","4.15.0-1019.19","4.15.0-1020.20","4.15.0-1021.21","4.15.0-1023.23","4.15.0-1025.25","4.15.0-1026.26","4.15.0-1027.27"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1028.28","binary_name":"linux-buildinfo-4.15.0-1028-kvm"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-headers-4.15.0-1028-kvm"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-image-4.15.0-1028-kvm"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-kvm-headers-4.15.0-1028"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-kvm-tools-4.15.0-1028"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-modules-4.15.0-1028-kvm"},{"binary_version":"4.15.0-1028.28","binary_name":"linux-tools-4.15.0-1028-kvm"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-oem","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-oem@4.15.0-1030.35?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1030.35"}]}],"versions":["4.15.0-1002.3","4.15.0-1004.5","4.15.0-1006.9","4.15.0-1008.11","4.15.0-1009.12","4.15.0-1012.15","4.15.0-1013.16","4.15.0-1015.18","4.15.0-1017.20","4.15.0-1018.21","4.15.0-1021.24","4.15.0-1024.29","4.15.0-1026.31","4.15.0-1028.33"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1030.35","binary_name":"block-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"crypto-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"fat-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"fb-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"firewire-core-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"floppy-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"fs-core-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"fs-secondary-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"input-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"ipmi-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"irda-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"kernel-image-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-buildinfo-4.15.0-1030-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-headers-4.15.0-1030-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-image-unsigned-4.15.0-1030-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-modules-4.15.0-1030-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-oem-headers-4.15.0-1030"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-oem-tools-4.15.0-1030"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-tools-4.15.0-1030-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"linux-udebs-oem"},{"binary_version":"4.15.0-1030.35","binary_name":"md-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"message-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"mouse-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"multipath-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"nfs-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"nic-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"nic-pcmcia-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"nic-shared-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"nic-usb-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"parport-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"pata-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"pcmcia-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"pcmcia-storage-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"plip-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"ppp-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"sata-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"scsi-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"serial-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"storage-core-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"usb-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"virtio-modules-4.15.0-1030-oem-di"},{"binary_version":"4.15.0-1030.35","binary_name":"vlan-modules-4.15.0-1030-oem-di"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}},{"package":{"name":"linux-raspi2","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/linux-raspi2@4.15.0-1030.32?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.15.0-1030.32"}]}],"versions":["4.13.0-1005.5","4.13.0-1006.6","4.13.0-1008.8","4.15.0-1006.7","4.15.0-1009.10","4.15.0-1010.11","4.15.0-1011.12","4.15.0-1012.13","4.15.0-1013.14","4.15.0-1017.18","4.15.0-1018.19","4.15.0-1020.22","4.15.0-1021.23","4.15.0-1022.24","4.15.0-1024.26","4.15.0-1026.28","4.15.0-1027.29","4.15.0-1028.30","4.15.0-1029.31"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"4.15.0-1030.32","binary_name":"linux-buildinfo-4.15.0-1030-raspi2"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-headers-4.15.0-1030-raspi2"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-image-4.15.0-1030-raspi2"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-modules-4.15.0-1030-raspi2"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-raspi2-headers-4.15.0-1030"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-raspi2-tools-4.15.0-1030"},{"binary_version":"4.15.0-1030.32","binary_name":"linux-tools-4.15.0-1030-raspi2"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3847-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-10902"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"low","type":"Ubuntu"}],"id":"CVE-2018-12896"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-14734"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-16276"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18445"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18690"},{"severity":[{"score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2018-18710"}],"ecosystem":"Ubuntu:18.04:LTS"}}}],"schema_version":"1.7.3"}