vulnerability

Ubuntu: USN-3522-3: Linux kernel regression

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:C/I:N/A:N)
Published
2018-01-10
Added
2018-01-11
Modified
2025-02-19

Description

USN-3522-1 fixed a vulnerability in the Linux kernel to address Meltdown (CVE-2017-5754). Unfortunately, that update introduced a regression where a few systems failed to boot successfully. This update fixes the problem.


We apologize for the inconvenience.


Original advisory details:


Jann Horn discovered that microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Meltdown. A local attacker could use this to expose sensitive information, including kernel memory.

Solution(s)

ubuntu-upgrade-linux-image-4-4-0-109-genericubuntu-upgrade-linux-image-4-4-0-109-lowlatencyubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-lowlatency
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.