LSN-0065-1

Advisory lineage Upstream: 6 Downstream: 0
Published: 09 Apr 2020, 10:58
Last modified:03 Jun 2026, 14:04

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

09 Apr 2020, 10:58
Published
Vulnerability first disclosed
03 Jun 2026, 14:04
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual Machine) emulated the IOAPIC. A privileged guest user could exploit this flaw to read host memory or cause a denial of service (crash the host). (CVE-2013-1798) It was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information (read memory from another guest VM). (CVE-2019-3016) Al Viro discovered that the vfs layer in the Linux kernel contained a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2020-8428)

Affected Systems

  • ubuntulinux

    all | < 4.4.0-177.207 | < 4.15.0-96.97

  • ubuntulinux-aws

    all | < 4.4.0-1105.116

  • ubuntulinux-azure

    all | < 5.0.0-1035.37 | < 4.15.0-1077.82 | < 5.0.0-1036.38

  • ubuntulinux-gcp

    < 5.0.0-1033.34 | < 5.0.0-1034.35

  • ubuntulinux-hwe

    all | < 4.15.0-96.97~16.04.1

  • ubuntulinux-lts-xenial

    all | < 4.4.0-177.207~14.04.1

References (4)