vulnerability
Ubuntu: USN-3548-2: Linux kernel (HWE) vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Jan 26, 2018 | Jan 26, 2018 | Feb 19, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Jan 26, 2018
Added
Jan 26, 2018
Modified
Feb 19, 2025
Description
USN-3548-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS.
Jay Vosburgh discovered a logic error in the x86-64 syscall entry implementation in the Linux kernel, introduced as part of the mitigations for the Spectre vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.
Solutions
ubuntu-upgrade-linux-image-4-13-0-1007-azureubuntu-upgrade-linux-image-4-13-0-1008-gcpubuntu-upgrade-linux-image-4-13-0-1019-oemubuntu-upgrade-linux-image-4-13-0-32-genericubuntu-upgrade-linux-image-4-13-0-32-lowlatencyubuntu-upgrade-linux-image-azureubuntu-upgrade-linux-image-gcpubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-oem
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.