Test ID:	1.3.6.1.4.1.25623.1.0.843627
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3753-1)
Summary:	The remote host is missing an update for the 'linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon' package(s) announced via the USN-3753-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon' package(s) announced via the USN-3753-1 advisory. Vulnerability Insight: It was discovered that the generic SCSI driver in the Linux kernel did not properly enforce permissions on kernel memory access. A local attacker could use this to expose sensitive information or possibly elevate privileges. (CVE-2017-13168) Wen Xu discovered that a use-after-free vulnerability existed in the ext4 filesystem implementation in the Linux kernel. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-10876, CVE-2018-10879) Wen Xu discovered that a buffer overflow existed in the ext4 filesystem implementation in the Linux kernel. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-10877) Wen Xu discovered that an out-of-bounds write vulnerability existed in the ext4 filesystem implementation in the Linux kernel. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-10878, CVE-2018-10882) Wen Xu discovered that the ext4 filesystem implementation in the Linux kernel did not properly keep meta-data information consistent in some situations. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (system crash). (CVE-2018-10881) Shankara Pailoor discovered that the JFS filesystem implementation in the Linux kernel contained a buffer overflow when handling extended attributes. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-12233) Wen Xu discovered that the XFS filesystem implementation in the Linux kernel did not properly handle an error condition with a corrupted xfs image. An attacker could use this to construct a malicious xfs image that, when mounted, could cause a denial of service (system crash). (CVE-2018-13094) It was discovered that the Linux kernel did not properly handle setgid file creation when performed by a non-member of the group. A local attacker could use this to gain elevated privileges. (CVE-2018-13405) Silvio Cesare discovered that the generic VESA frame buffer driver in the Linux kernel contained an integer overflow. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-13406) Affected Software/OS: 'linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon' package(s) on Ubuntu 16.04. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-13168 https://usn.ubuntu.com/3753-1/ https://usn.ubuntu.com/3753-2/ https://usn.ubuntu.com/3820-1/ https://usn.ubuntu.com/3820-2/ https://usn.ubuntu.com/3820-3/ https://usn.ubuntu.com/3822-1/ https://usn.ubuntu.com/3822-2/ Common Vulnerability Exposure (CVE) ID: CVE-2018-10876 104904 http://www.securityfocus.com/bid/104904 106503 http://www.securityfocus.com/bid/106503 RHSA-2019:0525 https://access.redhat.com/errata/RHSA-2019:0525 USN-3753-1 USN-3753-2 USN-3871-1 https://usn.ubuntu.com/3871-1/ USN-3871-3 https://usn.ubuntu.com/3871-3/ USN-3871-4 https://usn.ubuntu.com/3871-4/ USN-3871-5 https://usn.ubuntu.com/3871-5/ [debian-lts-announce] 20180718 [SECURITY] [DLA 1423-1] linux-4.9 new package https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html http://patchwork.ozlabs.org/patch/929239/ https://bugzilla.kernel.org/show_bug.cgi?id=199403 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10876 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8844618d8aa7a9973e7b527d038a2a589665002c Common Vulnerability Exposure (CVE) ID: CVE-2018-10877 104878 http://www.securityfocus.com/bid/104878 RHSA-2018:2948 https://access.redhat.com/errata/RHSA-2018:2948 USN-3754-1 https://usn.ubuntu.com/3754-1/ https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10877 Common Vulnerability Exposure (CVE) ID: CVE-2018-10878 RHSA-2018:3083 https://access.redhat.com/errata/RHSA-2018:3083 RHSA-2018:3096 https://access.redhat.com/errata/RHSA-2018:3096 http://patchwork.ozlabs.org/patch/929237/ http://patchwork.ozlabs.org/patch/929238/ https://bugzilla.kernel.org/show_bug.cgi?id=199865 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10878 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=77260807d1170a8cf35dbb06e07461a655f67eee https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=819b23f1c501b17b9694325471789e6b5cc2d0d2 Common Vulnerability Exposure (CVE) ID: CVE-2018-10879 104902 http://www.securityfocus.com/bid/104902 http://patchwork.ozlabs.org/patch/928666/ http://patchwork.ozlabs.org/patch/928667/ https://bugzilla.kernel.org/show_bug.cgi?id=200001 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10879 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=513f86d73855ce556ea9522b6bfd79f87356dc3a https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5369a762c882c0b6e9599e4ebbb3a9ba9eee7e2d Common Vulnerability Exposure (CVE) ID: CVE-2018-10881 104901 http://www.securityfocus.com/bid/104901 USN-3752-1 https://usn.ubuntu.com/3752-1/ USN-3752-2 https://usn.ubuntu.com/3752-2/ USN-3752-3 https://usn.ubuntu.com/3752-3/ http://patchwork.ozlabs.org/patch/929792/ https://bugzilla.kernel.org/show_bug.cgi?id=200015 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10881 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6e8ab72a812396996035a37e5ca4b3b99b5d214b Common Vulnerability Exposure (CVE) ID: CVE-2018-10882 https://bugzilla.kernel.org/show_bug.cgi?id=200069 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10882 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c37e9e013469521d9adb932d17a1795c139b36db Common Vulnerability Exposure (CVE) ID: CVE-2018-12233 BugTraq ID: 104452 http://www.securityfocus.com/bid/104452 https://lkml.org/lkml/2018/6/2/2 https://marc.info/?l=linux-kernel&m=152814391530549&w=2 https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2018-13094 https://bugzilla.kernel.org/show_bug.cgi?id=199969 https://git.kernel.org/pub/scm/fs/xfs/xfs-linux.git/commit/?h=for-next&id=bb3d48dcf86a97dc25fe9fc2c11938e19cb4399a https://github.com/torvalds/linux/commit/bb3d48dcf86a97dc25fe9fc2c11938e19cb4399a https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html RedHat Security Advisories: RHSA-2019:0831 https://access.redhat.com/errata/RHSA-2019:0831 RedHat Security Advisories: RHSA-2019:2029 https://access.redhat.com/errata/RHSA-2019:2029 RedHat Security Advisories: RHSA-2019:2043 https://access.redhat.com/errata/RHSA-2019:2043 Common Vulnerability Exposure (CVE) ID: CVE-2018-13405 BugTraq ID: 106503 Debian Security Information: DSA-4266 (Google Search) https://www.debian.org/security/2018/dsa-4266 https://www.exploit-db.com/exploits/45033/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MTKKIAUMR5FAYLZ7HLEPOXMKAAE3BYBQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HRBNBX73SAFKQWBOX76SLMWPTKJPVGEJ/ http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7 http://openwall.com/lists/oss-security/2018/07/13/2 https://github.com/torvalds/linux/commit/0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7 https://twitter.com/grsecurity/status/1015082951204327425 https://lists.debian.org/debian-lts-announce/2018/08/msg00014.html RedHat Security Advisories: RHSA-2018:2948 RedHat Security Advisories: RHSA-2018:3083 RedHat Security Advisories: RHSA-2018:3096 RedHat Security Advisories: RHSA-2019:0717 https://access.redhat.com/errata/RHSA-2019:0717 RedHat Security Advisories: RHSA-2019:2476 https://access.redhat.com/errata/RHSA-2019:2476 RedHat Security Advisories: RHSA-2019:2566 https://access.redhat.com/errata/RHSA-2019:2566 RedHat Security Advisories: RHSA-2019:2696 https://access.redhat.com/errata/RHSA-2019:2696 RedHat Security Advisories: RHSA-2019:2730 https://access.redhat.com/errata/RHSA-2019:2730 RedHat Security Advisories: RHSA-2019:4159 https://access.redhat.com/errata/RHSA-2019:4159 RedHat Security Advisories: RHSA-2019:4164 https://access.redhat.com/errata/RHSA-2019:4164 Common Vulnerability Exposure (CVE) ID: CVE-2018-13406 BugTraq ID: 104685 http://www.securityfocus.com/bid/104685 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9f645bcc566a1e9f921bdae7528a01ced5bc3713 https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.17.4 https://github.com/torvalds/linux/commit/9f645bcc566a1e9f921bdae7528a01ced5bc3713 https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html http://www.securitytracker.com/id/1041355
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.