UBUNTU-CVE-2018-12201

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2018-12201

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12201.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-12201

Upstream

CVE-2018-12201

Published

2019-03-14T20:29:00Z

Modified

2025-07-16T07:37:51.565996Z

Severity

6.7 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

Buffer overflow vulnerability in Platform Sample / Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor, Intel(R) Pentium(R) Silver J5005 Processor, Intel(R) Pentium(R) Silver N5000 Processor, Intel(R) Celeron(R) J4105 Processor, Intel(R) Celeron(R) J4005 Processor, Intel Celeron(R) N4100 Processor and Intel(R) Celeron N4000 Processor may allow privileged user to potentially execute arbitrary code via local access.

References

Affected packages

Ubuntu:14.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20190514.0ubuntu0.14.04.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20190514.0ubuntu0.14.04.1

Affected versions

1.*

1.20130906.1ubuntu2

1.20130906.1ubuntu3

2.*

2.20140122.1

2.20140430.1ubuntu1

2.20140624-t-1ubuntu2

3.*

3.20180108.0~ubuntu14.04.2

3.20180108.0+really20170707ubuntu14.04.1

3.20180312.0~ubuntu14.04.1

3.20180425.1~ubuntu0.14.04.1

3.20180425.1~ubuntu0.14.04.2

3.20180807a.0ubuntu0.14.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "3.20190514.0ubuntu0.14.04.1",
            "binary_name": "intel-microcode"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12201.json"

Ubuntu:16.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20190514.0ubuntu0.16.04.1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20190514.0ubuntu0.16.04.1

Affected versions

3.*

3.20150121.1

3.20151106.1

3.20170707.1~ubuntu16.04.0

3.20180108.0~ubuntu16.04.2

3.20180108.0+really20170707ubuntu16.04.1

3.20180312.0~ubuntu16.04.1

3.20180425.1~ubuntu0.16.04.1

3.20180425.1~ubuntu0.16.04.2

3.20180807a.0ubuntu0.16.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "3.20190514.0ubuntu0.16.04.1",
            "binary_name": "intel-microcode"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12201.json"

Ubuntu:18.04:LTS / intel-microcode

Package

Name: intel-microcode
Purl: pkg:deb/ubuntu/intel-microcode@3.20190514.0ubuntu0.18.04.2?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.20190514.0ubuntu0.18.04.2

Affected versions

3.*

3.20170707.1

3.20171117.1

3.20180108.1

3.20180108.1+really20171117.1

3.20180312.0~ubuntu18.04.1

3.20180425.1~ubuntu0.18.04.1

3.20180425.1~ubuntu0.18.04.2

3.20180807a.0ubuntu0.18.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "3.20190514.0ubuntu0.18.04.2",
            "binary_name": "intel-microcode"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12201.json"