Oval Definition:oval:com.ubuntu.cosmic:def:20197222000
Revision Date:2019-03-21Version:1
Title:CVE-2019-7222 on Ubuntu 18.10 (cosmic) - medium.
Description:The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak. Felix Wilhelm discovered that an information leak vulnerability existed in the KVM subsystem of the Linux kernel, when nested virtualization is used. A local attacker could use this to expose sensitive information (host system memory to a guest VM).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-7222
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND Package Information
  • The 'linux' package in cosmic was vulnerable but has been fixed (note: '4.18.0-17.18').
  • OR The 'linux-aws' package in cosmic was vulnerable but has been fixed (note: '4.18.0-1012.14').
  • OR The 'linux-azure' package in cosmic was vulnerable but has been fixed (note: '4.18.0-1014.14').
  • OR The 'linux-gcp' package in cosmic was vulnerable but has been fixed (note: '4.18.0-1008.9').
  • OR The 'linux-kvm' package in cosmic was vulnerable but has been fixed (note: '4.18.0-1009.9').
  • OR The 'linux-oem' package in cosmic is affected. An update containing the fix has been completed and is pending publication (note: '4.15.0-1035.40').
  • OR The 'linux-oracle' package in cosmic is affected. An update containing the fix has been completed and is pending publication (note: '4.15.0-1010.12').
  • OR The 'linux-raspi2' package in cosmic was vulnerable but has been fixed (note: '4.18.0-1011.13').
    • BACK