[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-3931-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":62,"duplicates":63,"related":64,"reserved_at":9,"published_at":77,"modified_at":78,"state":9,"summary":79,"references_raw":81,"kevs":137,"epss":9,"epss_history":138,"metrics":139,"affected":140},"USN-3931-1","linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, linux-raspi2 vulnerabilities\n\nM. Vefa Bicakci and Andy Lutomirski discovered that the kernel did not\nproperly set up all arguments to an error handler callback used when\nrunning as a paravirtualized guest. An unprivileged attacker in a\nparavirtualized guest VM could use this to cause a denial of service (guest\nVM crash). (CVE-2018-14678)\n\nIt was discovered that the KVM implementation in the Linux kernel on ARM\n64bit processors did not properly handle some ioctls. An attacker with the\nprivilege to create KVM-based virtual machines could use this to cause a\ndenial of service (host system crash) or execute arbitrary code in the\nhost. (CVE-2018-18021)\n\nMathias Payer and Hui Peng discovered a use-after-free vulnerability in the\nAdvanced Linux Sound Architecture (ALSA) subsystem. A physically proximate\nattacker could use this to cause a denial of service (system crash).\n(CVE-2018-19824)\n\nShlomi Oberman, Yuli Shapiro, and Ran Menscher discovered an information\nleak in the Bluetooth implementation of the Linux kernel. An attacker\nwithin Bluetooth range could use this to expose sensitive information\n(kernel memory). (CVE-2019-3459, CVE-2019-3460)\n\nJann Horn discovered that the KVM implementation in the Linux kernel\ncontained a use-after-free vulnerability. An attacker in a guest VM with\naccess to /dev/kvm could use this to cause a denial of service (guest VM\ncrash). (CVE-2019-6974)\n\nJim Mattson and Felix Wilhelm discovered a use-after-free vulnerability in\nthe KVM subsystem of the Linux kernel, when using nested virtual machines.\nA local attacker in a guest VM could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code in the host system.\n(CVE-2019-7221)\n\nFelix Wilhelm discovered that an information leak vulnerability existed in\nthe KVM subsystem of the Linux kernel, when nested virtualization is used.\nA local attacker could use this to expose sensitive information (host\nsystem memory to a guest VM). (CVE-2019-7222)\n\nJann Horn discovered that the eBPF implementation in the Linux kernel was\ninsufficiently hardened against Spectre V1 attacks. A local attacker could\nuse this to expose sensitive information. (CVE-2019-7308)\n\nIt was discovered that a use-after-free vulnerability existed in the user-\nspace API for crypto (af_alg) implementation in the Linux kernel. A local\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2019-8912)\n\nIt was discovered that the Linux kernel did not properly deallocate memory\nwhen handling certain errors while reading files. A local attacker could\nuse this to cause a denial of service (excessive memory consumption).\n(CVE-2019-8980)\n\nJann Horn discovered that the mmap implementation in the Linux kernel did\nnot properly check for the mmap minimum address in some situations. A local\nattacker could use this to assist exploiting a kernel NULL pointer\ndereference vulnerability. (CVE-2019-9213)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60],{"_key":15},"CVE-2018-14678",{"_key":17},"CVE-2018-18021",{"_key":19},"CVE-2018-19824",{"_key":21},"CVE-2019-3459",{"_key":23},"CVE-2019-3460",{"_key":25},"CVE-2019-6974",{"_key":27},"CVE-2019-7221",{"_key":29},"CVE-2019-7222",{"_key":31},"CVE-2019-7308",{"_key":33},"CVE-2019-8912",{"_key":35},"CVE-2019-8980",{"_key":37},"CVE-2019-9213",{"_key":39},"UBUNTU-CVE-2018-14678",{"_key":41},"UBUNTU-CVE-2018-18021",{"_key":43},"UBUNTU-CVE-2018-19824",{"_key":45},"UBUNTU-CVE-2019-3459",{"_key":47},"UBUNTU-CVE-2019-3460",{"_key":49},"UBUNTU-CVE-2019-6974",{"_key":51},"UBUNTU-CVE-2019-7221",{"_key":53},"UBUNTU-CVE-2019-7222",{"_key":55},"UBUNTU-CVE-2019-7308",{"_key":57},"UBUNTU-CVE-2019-8912",{"_key":59},"UBUNTU-CVE-2019-8980",{"_key":61},"UBUNTU-CVE-2019-9213",[],[],[65,66,67,68,69,70,71,72,73,74,75,76],{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},"2019-04-02T19:29:26Z","2026-06-03T14:04:25.464253320Z",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[82,88,93,97,101,105,109,113,117,121,125,129,133],{"url":83,"sources":84,"tags":86},"https://ubuntu.com/security/notices/USN-3931-1",[85],"osv_ubuntu",[87],"Advisory",{"url":89,"sources":90,"tags":91},"https://ubuntu.com/security/CVE-2018-14678",[85],[92],"REPORT",{"url":94,"sources":95,"tags":96},"https://ubuntu.com/security/CVE-2018-18021",[85],[92],{"url":98,"sources":99,"tags":100},"https://ubuntu.com/security/CVE-2018-19824",[85],[92],{"url":102,"sources":103,"tags":104},"https://ubuntu.com/security/CVE-2019-3459",[85],[92],{"url":106,"sources":107,"tags":108},"https://ubuntu.com/security/CVE-2019-3460",[85],[92],{"url":110,"sources":111,"tags":112},"https://ubuntu.com/security/CVE-2019-6974",[85],[92],{"url":114,"sources":115,"tags":116},"https://ubuntu.com/security/CVE-2019-7221",[85],[92],{"url":118,"sources":119,"tags":120},"https://ubuntu.com/security/CVE-2019-7222",[85],[92],{"url":122,"sources":123,"tags":124},"https://ubuntu.com/security/CVE-2019-7308",[85],[92],{"url":126,"sources":127,"tags":128},"https://ubuntu.com/security/CVE-2019-8912",[85],[92],{"url":130,"sources":131,"tags":132},"https://ubuntu.com/security/CVE-2019-8980",[85],[92],{"url":134,"sources":135,"tags":136},"https://ubuntu.com/security/CVE-2019-9213",[85],[92],[],[],[],[141,153,159,165,171,177,183],{"ecosystem":142,"name":143,"vendor":144,"product":143,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":143,"source":9,"versions":146},"Ubuntu","linux","ubuntu","deb",[147],{"version":148,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":151,"version_end_type":152,"fixed_in":9},"lt4_15_0_47_50",true,"ecosystem","4.15.0-47.50","excluding",{"ecosystem":142,"name":154,"vendor":144,"product":154,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":154,"source":9,"versions":155},"linux-aws",[156],{"version":157,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":158,"version_end_type":152,"fixed_in":9},"lt4_15_0_1035_37","4.15.0-1035.37",{"ecosystem":142,"name":160,"vendor":144,"product":160,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":160,"source":9,"versions":161},"linux-gcp",[162],{"version":163,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":164,"version_end_type":152,"fixed_in":9},"lt4_15_0_1029_31","4.15.0-1029.31",{"ecosystem":142,"name":166,"vendor":144,"product":166,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":166,"source":9,"versions":167},"linux-kvm",[168],{"version":169,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":170,"version_end_type":152,"fixed_in":9},"lt4_15_0_1031_31","4.15.0-1031.31",{"ecosystem":142,"name":172,"vendor":144,"product":172,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":172,"source":9,"versions":173},"linux-oem",[174],{"version":175,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":176,"version_end_type":152,"fixed_in":9},"lt4_15_0_1035_40","4.15.0-1035.40",{"ecosystem":142,"name":178,"vendor":144,"product":178,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":178,"source":9,"versions":179},"linux-oracle",[180],{"version":181,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":182,"version_end_type":152,"fixed_in":9},"lt4_15_0_1010_12","4.15.0-1010.12",{"ecosystem":142,"name":184,"vendor":144,"product":184,"cpe_part":9,"purl_type":145,"purl_namespace":144,"purl_name":184,"source":9,"versions":185},"linux-raspi2",[186],{"version":187,"is_range":149,"range_type":150,"version_start":9,"version_start_type":9,"version_end":188,"version_end_type":152,"fixed_in":9},"lt4_15_0_1033_35","4.15.0-1033.35"]