USN-3541-2
- Source
- https://ubuntu.com/security/notices/USN-3541-2
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3541-2.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-3541-2
- Related
- Published
- 2018-01-23T01:18:04.266320Z
- Modified
- 2018-01-23T01:18:04.266320Z
- Summary
- linux-hwe, linux-azure, linux-gcp, linux-oem vulnerabilities
- Details
-
USN-3541-1 addressed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS.
Jann Horn discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. A local attacker could use this to expose sensitive information, including kernel memory. This update provides mitigations for the i386 (CVE-2017-5753 only), amd64, ppc64el, and s390x architectures. (CVE-2017-5715, CVE-2017-5753)
USN-3523-2 mitigated CVE-2017-5754 (Meltdown) for the amd64 architecture in the Linux Hardware Enablement (HWE) kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. This update provides the corresponding mitigations for the ppc64el architecture. Original advisory details:
Jann Horn discovered that microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Meltdown. A local attacker could use this to expose sensitive information, including kernel memory. (CVE-2017-5754)
- References
Affected packages
Ubuntu:16.04:LTS / linux-azure
Package
- Name
- linux-azure
- Purl
- pkg:deb/ubuntu/linux-azure?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.13.0-1006.8
Affected versions
4.*
4.11.0-1009.9
4.11.0-1011.11
4.11.0-1013.13
4.11.0-1014.14
4.11.0-1015.15
4.11.0-1016.16
4.13.0-1005.7
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-azure-cloud-tools-4.13.0-1006"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-azure-cloud-tools-4.13.0-1006-dbgsym"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-azure-headers-4.13.0-1006"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-azure-tools-4.13.0-1006"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-azure-tools-4.13.0-1006-dbgsym"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-cloud-tools-4.13.0-1006-azure"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-headers-4.13.0-1006-azure"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-image-4.13.0-1006-azure"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-image-4.13.0-1006-azure-dbgsym"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-image-extra-4.13.0-1006-azure"
},
{
"binary_version": "4.13.0-1006.8",
"binary_name": "linux-tools-4.13.0-1006-azure"
}
]
}
Ubuntu:16.04:LTS / linux-gcp
Package
- Name
- linux-gcp
- Purl
- pkg:deb/ubuntu/linux-gcp?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.13.0-1007.10
Affected versions
4.*
4.10.0-1004.4
4.10.0-1006.6
4.10.0-1007.7
4.10.0-1008.8
4.10.0-1009.9
4.13.0-1002.5
4.13.0-1006.9
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-cloud-tools-4.13.0-1007-gcp"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-gcp-cloud-tools-4.13.0-1007"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-gcp-cloud-tools-4.13.0-1007-dbgsym"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-gcp-headers-4.13.0-1007"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-gcp-tools-4.13.0-1007"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-gcp-tools-4.13.0-1007-dbgsym"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-headers-4.13.0-1007-gcp"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-image-4.13.0-1007-gcp"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-image-4.13.0-1007-gcp-dbgsym"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-image-extra-4.13.0-1007-gcp"
},
{
"binary_version": "4.13.0-1007.10",
"binary_name": "linux-tools-4.13.0-1007-gcp"
}
]
}
Ubuntu:16.04:LTS / linux-hwe
Package
- Name
- linux-hwe
- Purl
- pkg:deb/ubuntu/linux-hwe?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.13.0-31.34~16.04.1
Affected versions
4.*
4.8.0-36.36~16.04.1
4.8.0-39.42~16.04.1
4.8.0-41.44~16.04.1
4.8.0-42.45~16.04.1
4.8.0-44.47~16.04.1
4.8.0-45.48~16.04.1
4.8.0-46.49~16.04.1
4.8.0-49.52~16.04.1
4.8.0-51.54~16.04.1
4.8.0-52.55~16.04.1
4.8.0-53.56~16.04.1
4.8.0-54.57~16.04.1
4.8.0-56.61~16.04.1
4.8.0-58.63~16.04.1
4.10.0-27.30~16.04.2
4.10.0-28.32~16.04.2
4.10.0-30.34~16.04.1
4.10.0-32.36~16.04.1
4.10.0-33.37~16.04.1
4.10.0-35.39~16.04.1
4.10.0-37.41~16.04.1
4.10.0-38.42~16.04.1
4.10.0-40.44~16.04.1
4.10.0-42.46~16.04.1
4.13.0-26.29~16.04.2
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "block-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "block-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "crypto-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "crypto-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "dasd-extra-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "dasd-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fat-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fat-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fb-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "firewire-core-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "floppy-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fs-core-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fs-core-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fs-secondary-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "fs-secondary-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "input-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "input-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "ipmi-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "ipmi-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "irda-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "irda-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "kernel-image-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "kernel-image-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-cloud-tools-4.13.0-31-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-cloud-tools-4.13.0-31-lowlatency"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-headers-4.13.0-31"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-headers-4.13.0-31-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-headers-4.13.0-31-generic-lpae"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-headers-4.13.0-31-lowlatency"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-cloud-tools-4.13.0-31"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-cloud-tools-4.13.0-31-dbgsym"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-tools-4.13.0-31"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-tools-4.13.0-31-dbgsym"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-udebs-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-hwe-udebs-generic-lpae"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-generic-dbgsym"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-generic-lpae"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-generic-lpae-dbgsym"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-lowlatency"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-4.13.0-31-lowlatency-dbgsym"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-image-extra-4.13.0-31-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-source-4.13.0"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-tools-4.13.0-31-generic"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-tools-4.13.0-31-generic-lpae"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "linux-tools-4.13.0-31-lowlatency"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "md-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "md-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "message-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "mouse-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "mouse-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "multipath-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "multipath-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nfs-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nfs-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-pcmcia-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-shared-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-shared-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-usb-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "nic-usb-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "parport-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "parport-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "pata-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "pcmcia-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "pcmcia-storage-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "plip-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "plip-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "ppp-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "ppp-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "sata-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "sata-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "scsi-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "scsi-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "serial-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "storage-core-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "storage-core-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "usb-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "usb-modules-4.13.0-31-generic-lpae-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "virtio-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "vlan-modules-4.13.0-31-generic-di"
},
{
"binary_version": "4.13.0-31.34~16.04.1",
"binary_name": "vlan-modules-4.13.0-31-generic-lpae-di"
}
]
}
Ubuntu:16.04:LTS / linux-oem
Package
- Name
- linux-oem
- Purl
- pkg:deb/ubuntu/linux-oem?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.13.0-1017.18
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "4.13.0-1017.18",
"binary_name": "block-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "crypto-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "fat-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "fb-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "firewire-core-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "floppy-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "fs-core-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "fs-secondary-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "input-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "ipmi-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "irda-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "kernel-image-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-headers-4.13.0-1017-oem"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-image-4.13.0-1017-oem"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-image-4.13.0-1017-oem-dbgsym"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-oem-headers-4.13.0-1017"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-oem-tools-4.13.0-1017"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-oem-tools-4.13.0-1017-dbgsym"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-tools-4.13.0-1017-oem"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "linux-udebs-oem"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "md-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "message-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "mouse-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "multipath-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "nfs-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "nic-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "nic-pcmcia-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "nic-shared-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "nic-usb-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "parport-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "pata-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "pcmcia-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "pcmcia-storage-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "plip-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "ppp-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "sata-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "scsi-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "serial-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "storage-core-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "usb-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "virtio-modules-4.13.0-1017-oem-di"
},
{
"binary_version": "4.13.0-1017.18",
"binary_name": "vlan-modules-4.13.0-1017-oem-di"
}
]
}