[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-4163-2":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":54,"duplicates":55,"related":56,"reserved_at":9,"published_at":67,"modified_at":68,"state":9,"summary":69,"references_raw":71,"kevs":119,"epss":9,"epss_history":120,"metrics":121,"affected":122},"USN-4163-2","linux-lts-xenial, linux-aws vulnerabilities\n\nUSN-4163-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04\nLTS. This update provides the corresponding updates for the Linux\nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu\n14.04 ESM.\n\nIt was discovered that a race condition existed in the ARC EMAC ethernet\ndriver for the Linux kernel, resulting in a use-after-free vulnerability.\nAn attacker could use this to cause a denial of service (system crash).\n(CVE-2016-10906)\n\nIt was discovered that a race condition existed in the Serial Attached SCSI\n(SAS) implementation in the Linux kernel when handling certain error\nconditions. A local attacker could use this to cause a denial of service\n(kernel deadlock). (CVE-2017-18232)\n\nIt was discovered that the RSI 91x Wi-Fi driver in the Linux kernel did not\ndid not handle detach operations correctly, leading to a use-after-free\nvulnerability. A physically proximate attacker could use this to cause a\ndenial of service (system crash) or possibly execute arbitrary code.\n(CVE-2018-21008)\n\nWen Huang discovered that the Marvell Wi-Fi device driver in the Linux\nkernel did not properly perform bounds checking, leading to a heap\noverflow. A local attacker could use this to cause a denial of service\n(system crash) or possibly execute arbitrary code. (CVE-2019-14814,\nCVE-2019-14816)\n\nMatt Delco discovered that the KVM hypervisor implementation in the Linux\nkernel did not properly perform bounds checking when handling coalesced\nMMIO write operations. A local attacker with write access to /dev/kvm could\nuse this to cause a denial of service (system crash). (CVE-2019-14821)\n\nHui Peng and Mathias Payer discovered that the USB audio driver for the\nLinux kernel did not properly validate device meta data. A physically\nproximate attacker could use this to cause a denial of service (system\ncrash). (CVE-2019-15117)\n\nHui Peng and Mathias Payer discovered that the USB audio driver for the\nLinux kernel improperly performed recursion while handling device meta\ndata. A physically proximate attacker could use this to cause a denial of\nservice (system crash). (CVE-2019-15118)\n\nIt was discovered that the Technisat DVB-S/S2 USB device driver in the\nLinux kernel contained a buffer overread. A physically proximate attacker\ncould use this to cause a denial of service (system crash) or possibly\nexpose sensitive information. (CVE-2019-15505)\n\nBrad Spengler discovered that a Spectre mitigation was improperly\nimplemented in the ptrace susbsystem of the Linux kernel. A local attacker\ncould possibly use this to expose sensitive information. (CVE-2019-15902)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52],{"_key":15},"CVE-2016-10906",{"_key":17},"CVE-2017-18232",{"_key":19},"CVE-2018-21008",{"_key":21},"CVE-2019-14814",{"_key":23},"CVE-2019-14816",{"_key":25},"CVE-2019-14821",{"_key":27},"CVE-2019-15117",{"_key":29},"CVE-2019-15118",{"_key":31},"CVE-2019-15505",{"_key":33},"CVE-2019-15902",{"_key":35},"UBUNTU-CVE-2016-10906",{"_key":37},"UBUNTU-CVE-2017-18232",{"_key":39},"UBUNTU-CVE-2018-21008",{"_key":41},"UBUNTU-CVE-2019-14814",{"_key":43},"UBUNTU-CVE-2019-14816",{"_key":45},"UBUNTU-CVE-2019-14821",{"_key":47},"UBUNTU-CVE-2019-15117",{"_key":49},"UBUNTU-CVE-2019-15118",{"_key":51},"UBUNTU-CVE-2019-15505",{"_key":53},"UBUNTU-CVE-2019-15902",[],[],[57,58,59,60,61,62,63,64,65,66],{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},"2019-10-23T03:29:46Z","2026-06-03T14:03:49.636234866Z",{"cisa_kev":70,"cisa_ransomware":70,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[72,78,83,87,91,95,99,103,107,111,115],{"url":73,"sources":74,"tags":76},"https://ubuntu.com/security/notices/USN-4163-2",[75],"osv_ubuntu",[77],"Advisory",{"url":79,"sources":80,"tags":81},"https://ubuntu.com/security/CVE-2016-10906",[75],[82],"REPORT",{"url":84,"sources":85,"tags":86},"https://ubuntu.com/security/CVE-2017-18232",[75],[82],{"url":88,"sources":89,"tags":90},"https://ubuntu.com/security/CVE-2018-21008",[75],[82],{"url":92,"sources":93,"tags":94},"https://ubuntu.com/security/CVE-2019-14814",[75],[82],{"url":96,"sources":97,"tags":98},"https://ubuntu.com/security/CVE-2019-14816",[75],[82],{"url":100,"sources":101,"tags":102},"https://ubuntu.com/security/CVE-2019-14821",[75],[82],{"url":104,"sources":105,"tags":106},"https://ubuntu.com/security/CVE-2019-15117",[75],[82],{"url":108,"sources":109,"tags":110},"https://ubuntu.com/security/CVE-2019-15118",[75],[82],{"url":112,"sources":113,"tags":114},"https://ubuntu.com/security/CVE-2019-15505",[75],[82],{"url":116,"sources":117,"tags":118},"https://ubuntu.com/security/CVE-2019-15902",[75],[82],[],[],[],[123,135],{"ecosystem":124,"name":125,"vendor":126,"product":125,"cpe_part":9,"purl_type":127,"purl_namespace":126,"purl_name":125,"source":9,"versions":128},"Ubuntu","linux-aws","ubuntu","deb",[129],{"version":130,"is_range":131,"range_type":132,"version_start":9,"version_start_type":9,"version_end":133,"version_end_type":134,"fixed_in":9},"lt4_4_0_1056_60",true,"ecosystem","4.4.0-1056.60","excluding",{"ecosystem":124,"name":136,"vendor":126,"product":136,"cpe_part":9,"purl_type":127,"purl_namespace":126,"purl_name":136,"source":9,"versions":137},"linux-lts-xenial",[138],{"version":139,"is_range":131,"range_type":132,"version_start":9,"version_start_type":9,"version_end":140,"version_end_type":134,"fixed_in":9},"lt4_4_0_166_195~14_04_1","4.4.0-166.195~14.04.1"]