It was discovered that the virtual terminal driver in the Linux kernel did not properly handle VGA console font changes, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
4.15.0-1150.165~14.04.14.15.0-1150.165~16.04.14.15.0-1135.151~16.04.24.15.0-192.203~16.04.1