Lucene search

K
ubuntuUbuntuUSN-4303-2
HistoryMar 17, 2020 - 12:00 a.m.

Linux kernel (HWE) vulnerability

2020-03-1700:00:00
ubuntu.com
89

7 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.5%

Releases

  • Ubuntu 14.04 ESM

Packages

  • linux-aws - Linux kernel for Amazon Web Services (AWS) systems
  • linux-lts-xenial - Linux hardware enablement kernel from Xenial for Trusty

Details

USN-4303-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu
14.04 ESM.

Paulo Bonzini discovered that the KVM hypervisor implementation in the
Linux kernel could improperly let a nested (level 2) guest access the
resources of a parent (level 1) guest in certain situations. An attacker
could use this to expose sensitive information.