Oval Definition:	oval:com.ubuntu.bionic:def:201812904000
Revision Date: 2018-06-27 Version: 1 Title: CVE-2018-12904 on Ubuntu 18.04 LTS (bionic) - low. Description: In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL. Felix Wilhelm discovered that the KVM implementation in the Linux kernel did not properly perform permission checks in some situations when nested virtualization is used. An attacker in a guest VM could possibly use this to escape into an outer VM or the host OS. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-12904 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The 'linux' package in bionic was vulnerable but has been fixed (note: '4.15.0-33.36'). OR The 'linux-aws' package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20'). OR The 'linux-azure' package in bionic was vulnerable but has been fixed (note: '4.15.0-1022.23'). OR NOT While related to the CVE in some way, the 'linux-azure-edge' package in bionic is not affected (note: '4.18.0-1003.3~18.04.1'). OR The 'linux-gcp' package in bionic was vulnerable but has been fixed (note: '4.15.0-1018.19'). OR NOT While related to the CVE in some way, the 'linux-hwe' package in bionic is not affected. OR NOT While related to the CVE in some way, the 'linux-hwe-edge' package in bionic is not affected (note: '4.18.0-11.12~18.04.1'). OR The 'linux-kvm' package in bionic was vulnerable but has been fixed (note: '4.15.0-1020.20'). OR The 'linux-oem' package in bionic was vulnerable but has been fixed (note: '4.15.0-1017.20'). OR The 'linux-raspi2' package in bionic was vulnerable but has been fixed (note: '4.15.0-1021.23').
BACK