Ubuntu 3903-2: Linux kernel (HWE) vulnerabilities
Summary
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: linux-image-4.18.0-1013-azure 4.18.0-1013.13~18.04.1 linux-image-4.18.0-16-generic 4.18.0-16.17~18.04.1 linux-image-4.18.0-16-generic-lpae 4.18.0-16.17~18.04.1 linux-image-4.18.0-16-lowlatency 4.18.0-16.17~18.04.1 linux-image-4.18.0-16-snapdragon 4.18.0-16.17~18.04.1 linux-image-azure 4.18.0.1013.12 linux-image-generic-hwe-18.04 4.18.0.16.66 linux-image-generic-lpae-hwe-18.04 4.18.0.16.66 linux-image-lowlatency-hwe-18.04 4.18.0.16.66 linux-image-snapdragon-hwe-18.04 4.18.0.16.66 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.
References
https://ubuntu.com/security/notices/USN-3903-2
https://ubuntu.com/security/notices/USN-3903-1
CVE-2018-16880, CVE-2018-18397, CVE-2019-6133
Package Information
https://launchpad.net/ubuntu/+source/linux-azure/4.18.0-1013.13~18.04.1 https://launchpad.net/ubuntu/+source/linux-hwe/4.18.0-16.17~18.04.1