UBUNTU-CVE-2018-3615

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2018-3615

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-3615.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-3615

Related

CVE-2018-3615

Published

2018-08-14T17:00:00Z

Modified

2025-01-13T10:21:33Z

Severity

6.4 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N CVSS Calculator

Summary

[none]

Details

Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.

References

Affected packages

Ubuntu:14.04:LTS / linux-azure

Package

Name: linux-azure
Purl: pkg:deb/ubuntu/linux-azure@4.15.0-1023.24~14.04.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.15.0-1023.24~14.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-azure-cloud-tools-4.15.0-1023"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-azure-cloud-tools-4.15.0-1023-dbgsym"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-azure-headers-4.15.0-1023"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-azure-tools-4.15.0-1023"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-azure-tools-4.15.0-1023-dbgsym"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-cloud-tools-4.15.0-1023-azure"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-headers-4.15.0-1023-azure"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-image-unsigned-4.15.0-1023-azure"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-image-unsigned-4.15.0-1023-azure-dbgsym"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-modules-4.15.0-1023-azure"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-modules-extra-4.15.0-1023-azure"
        },
        {
            "binary_version": "4.15.0-1023.24~14.04.1",
            "binary_name": "linux-tools-4.15.0-1023-azure"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / linux-flo

Package

Name: linux-flo
Purl: pkg:deb/ubuntu/linux-flo@3.4.0-5.23?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.4.0-5.19

3.4.0-5.22

3.4.0-5.23

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / linux-mako

Package

Name: linux-mako
Purl: pkg:deb/ubuntu/linux-mako@3.4.0-7.44?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.4.0-7.39

3.4.0-7.40

3.4.0-7.41

3.4.0-7.44

Ecosystem specific

{
    "ubuntu_priority": "medium"
}