USN-3732-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-3732-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-3732-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-3732-1
Related
Published
2018-08-06T21:45:01.977685Z
Modified
2018-08-06T21:45:01.977685Z
Summary
linux, linux-aws, linux-azure, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerability
Details

Juha-Matti Tilli discovered that the TCP implementation in the Linux kernel performed algorithmically expensive operations in some situations when handling incoming packets. A remote attacker could use this to cause a denial of service.

References

Affected packages

Ubuntu:18.04:LTS / linux

Package

Name
linux

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-30.32

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-4.15.0-30-generic-lpae": "4.15.0-30.32",
            "linux-image-4.15.0-30-snapdragon": "4.15.0-30.32",
            "linux-image-unsigned-4.15.0-30-generic": "4.15.0-30.32",
            "linux-image-unsigned-4.15.0-30-lowlatency": "4.15.0-30.32",
            "linux-image-4.15.0-30-lowlatency": "4.15.0-30.32",
            "linux-image-4.15.0-30-generic": "4.15.0-30.32"
        }
    ]
}

Ubuntu:18.04:LTS / linux-kvm

Package

Name
linux-kvm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1017.17

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-4.15.0-1017-aws": "4.15.0-1017.17",
            "linux-image-4.15.0-1017-kvm": "4.15.0-1017.17"
        }
    ]
}

Ubuntu:18.04:LTS / linux-aws

Package

Name
linux-aws

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1017.17

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-4.15.0-1017-aws": "4.15.0-1017.17",
            "linux-image-4.15.0-1017-kvm": "4.15.0-1017.17"
        }
    ]
}

Ubuntu:18.04:LTS / linux-raspi2

Package

Name
linux-raspi2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1018.19

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-4.15.0-1018-raspi2": "4.15.0-1018.19"
        }
    ]
}

Ubuntu:18.04:LTS / linux-azure

Package

Name
linux-azure

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1019.19

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-unsigned-4.15.0-1019-azure": "4.15.0-1019.19"
        }
    ]
}

Ubuntu:18.04:LTS / linux-oem

Package

Name
linux-oem

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1013.16

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-unsigned-4.15.0-1013-oem": "4.15.0-1013.16"
        }
    ]
}

Ubuntu:18.04:LTS / linux-gcp

Package

Name
linux-gcp

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.15.0-1015.15

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "linux-image-4.15.0-1015-gcp": "4.15.0-1015.15"
        }
    ]
}