USN-4411-1

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-4411-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4411-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-4411-1
Upstream
Related
Published
2020-07-06T19:29:23.054926Z
Modified
2025-10-13T04:35:09Z
Summary
linux, linux-aws, inux-azure, linux-gcp, linux-kvm, linux-oracle, linux-raspi, linux-riscv vulnerabilities
Details

It was discovered that the elf handling code in the Linux kernel did not initialize memory before using it in certain situations. A local attacker could use this to possibly expose sensitive information (kernel memory). (CVE-2020-10732)

Matthew Sheets discovered that the SELinux network label handling implementation in the Linux kernel could be coerced into de-referencing a NULL pointer. A remote attacker could use this to cause a denial of service (system crash). (CVE-2020-10711)

It was discovered that the SCSI generic (sg) driver in the Linux kernel did not properly handle certain error conditions correctly. A local privileged attacker could use this to cause a denial of service (system crash). (CVE-2020-12770)

It was discovered that the USB Gadget device driver in the Linux kernel did not validate arguments passed from configfs in some situations. A local attacker could possibly use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2020-13143)

It was discovered that the KVM implementation in the Linux kernel did not properly deallocate memory on initialization for some processors. A local attacker could possibly use this to cause a denial of service. (CVE-2020-12768)

References

Affected packages

Ubuntu:20.04:LTS

linux

Package

Name
linux
Purl
pkg:deb/ubuntu/linux@5.4.0-40.44?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-40.44

Affected versions

5.*

5.3.0-18.19
5.3.0-24.26
5.4.0-9.12
5.4.0-18.22
5.4.0-21.25
5.4.0-24.28
5.4.0-25.29
5.4.0-26.30
5.4.0-28.32
5.4.0-29.33
5.4.0-31.35
5.4.0-33.37
5.4.0-37.41
5.4.0-39.43

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "block-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "block-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "crypto-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "crypto-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "dasd-extra-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "dasd-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fat-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fat-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fb-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "firewire-core-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "floppy-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fs-core-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fs-core-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fs-secondary-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "fs-secondary-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "input-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "input-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "ipmi-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "ipmi-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "kernel-image-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "kernel-image-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-40-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-cloud-tools-5.4.0-40",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-cloud-tools-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-cloud-tools-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-cloud-tools-common",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-headers-5.4.0-40",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-headers-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-headers-5.4.0-40-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-headers-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-image-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-image-5.4.0-40-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-libc-dev",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-modules-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-modules-5.4.0-40-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-modules-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-source-5.4.0",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-5.4.0-40",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-5.4.0-40-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-5.4.0-40-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-5.4.0-40-lowlatency",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-common",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-tools-host",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-udebs-generic",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "linux-udebs-generic-lpae",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "md-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "md-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "message-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "mouse-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "mouse-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "multipath-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "multipath-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nfs-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nfs-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-pcmcia-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-shared-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-shared-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-usb-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "nic-usb-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "parport-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "parport-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "pata-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "pcmcia-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "pcmcia-storage-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "plip-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "plip-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "ppp-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "ppp-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "sata-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "sata-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "scsi-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "scsi-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "serial-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "storage-core-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "storage-core-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "usb-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "usb-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "virtio-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "vlan-modules-5.4.0-40-generic-di",
            "binary_version": "5.4.0-40.44"
        },
        {
            "binary_name": "vlan-modules-5.4.0-40-generic-lpae-di",
            "binary_version": "5.4.0-40.44"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-aws

Package

Name
linux-aws
Purl
pkg:deb/ubuntu/linux-aws@5.4.0-1018.18?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1018.18

Affected versions

5.*

5.3.0-1003.3
5.3.0-1008.9
5.3.0-1009.10
5.3.0-1010.11
5.4.0-1005.5
5.4.0-1007.7
5.4.0-1008.8
5.4.0-1009.9
5.4.0-1011.11
5.4.0-1015.15
5.4.0-1017.17

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-aws-cloud-tools-5.4.0-1018",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-aws-headers-5.4.0-1018",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-aws-tools-5.4.0-1018",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-cloud-tools-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-headers-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-image-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-modules-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-tools-5.4.0-1018-aws",
            "binary_version": "5.4.0-1018.18"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-azure

Package

Name
linux-azure
Purl
pkg:deb/ubuntu/linux-azure@5.4.0-1020.20?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1020.20

Affected versions

5.*

5.3.0-1003.3
5.3.0-1008.9
5.3.0-1009.10
5.4.0-1006.6
5.4.0-1008.8
5.4.0-1009.9
5.4.0-1010.10
5.4.0-1012.12
5.4.0-1016.16
5.4.0-1019.19

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-azure-cloud-tools-5.4.0-1020",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-azure-headers-5.4.0-1020",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-azure-tools-5.4.0-1020",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-cloud-tools-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-headers-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-modules-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        },
        {
            "binary_name": "linux-tools-5.4.0-1020-azure",
            "binary_version": "5.4.0-1020.20"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-gcp

Package

Name
linux-gcp
Purl
pkg:deb/ubuntu/linux-gcp@5.4.0-1019.19?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1019.19

Affected versions

5.*

5.3.0-1004.4
5.3.0-1009.10
5.3.0-1011.12
5.4.0-1005.5
5.4.0-1007.7
5.4.0-1008.8
5.4.0-1009.9
5.4.0-1011.11
5.4.0-1015.15
5.4.0-1018.18

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-buildinfo-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-gcp-headers-5.4.0-1019",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-gcp-tools-5.4.0-1019",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-headers-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-modules-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-tools-5.4.0-1019-gcp",
            "binary_version": "5.4.0-1019.19"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-kvm

Package

Name
linux-kvm
Purl
pkg:deb/ubuntu/linux-kvm@5.4.0-1018.18?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1018.18

Affected versions

5.*

5.3.0-1003.3
5.3.0-1008.9
5.3.0-1009.10
5.4.0-1004.4
5.4.0-1006.6
5.4.0-1007.7
5.4.0-1008.8
5.4.0-1009.9
5.4.0-1011.11
5.4.0-1015.15

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-buildinfo-5.4.0-1018-kvm",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-headers-5.4.0-1018-kvm",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-1018-kvm",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-kvm-headers-5.4.0-1018",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-kvm-tools-5.4.0-1018",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-modules-5.4.0-1018-kvm",
            "binary_version": "5.4.0-1018.18"
        },
        {
            "binary_name": "linux-tools-5.4.0-1018-kvm",
            "binary_version": "5.4.0-1018.18"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-oracle

Package

Name
linux-oracle
Purl
pkg:deb/ubuntu/linux-oracle@5.4.0-1019.19?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1019.19

Affected versions

5.*

5.3.0-1002.2
5.3.0-1007.8
5.3.0-1008.9
5.4.0-1005.5
5.4.0-1007.7
5.4.0-1008.8
5.4.0-1009.9
5.4.0-1011.11
5.4.0-1015.15
5.4.0-1018.18

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-buildinfo-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-headers-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-image-unsigned-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-modules-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-oracle-headers-5.4.0-1019",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-oracle-tools-5.4.0-1019",
            "binary_version": "5.4.0-1019.19"
        },
        {
            "binary_name": "linux-tools-5.4.0-1019-oracle",
            "binary_version": "5.4.0-1019.19"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-raspi

Package

Name
linux-raspi
Purl
pkg:deb/ubuntu/linux-raspi@5.4.0-1013.13?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-1013.13

Affected versions

5.*

5.4.0-1007.7
5.4.0-1008.8
5.4.0-1011.11
5.4.0-1012.12

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "linux-buildinfo-5.4.0-1013-raspi",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-headers-5.4.0-1013-raspi",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-image-5.4.0-1013-raspi",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-modules-5.4.0-1013-raspi",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-raspi-headers-5.4.0-1013",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-raspi-tools-5.4.0-1013",
            "binary_version": "5.4.0-1013.13"
        },
        {
            "binary_name": "linux-tools-5.4.0-1013-raspi",
            "binary_version": "5.4.0-1013.13"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}

linux-riscv

Package

Name
linux-riscv
Purl
pkg:deb/ubuntu/linux-riscv@5.4.0-28.32?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.4.0-28.32

Affected versions

5.*

5.4.0-24.28
5.4.0-26.30
5.4.0-27.31

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "block-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "crypto-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "fat-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "firewire-core-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "fs-core-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "fs-secondary-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "input-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "ipmi-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "kernel-image-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-buildinfo-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-headers-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-image-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-libc-dev",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-modules-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-modules-extra-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-riscv-headers-5.4.0-28",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-riscv-tools-5.4.0-28",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-tools-5.4.0-28-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "linux-udebs-generic",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "md-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "message-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "mouse-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "multipath-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "nfs-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "nic-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "nic-shared-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "nic-usb-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "parport-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "pata-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "plip-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "ppp-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "sata-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "scsi-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "storage-core-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "usb-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "virtio-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        },
        {
            "binary_name": "vlan-modules-5.4.0-28-generic-di",
            "binary_version": "5.4.0-28.32"
        }
    ]
}

Database specific

cves_map

{
    "cves": [
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10711"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                    "type": "CVSS_V3"
                },
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-10732"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "negligible",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12768"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-12770"
        },
        {
            "severity": [
                {
                    "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                    "type": "CVSS_V3"
                },
                {
                    "score": "low",
                    "type": "Ubuntu"
                }
            ],
            "id": "CVE-2020-13143"
        }
    ],
    "ecosystem": "Ubuntu:20.04:LTS"
}