Explore top 10 tips to secure your open-source projects now. Read More
×
Several security issues were fixed in the kernel.
Software Description:
- linux: Linux kernel
Details:
Andrey Konovalov discovered that the AF_PACKET implementation in the Linux
kernel did not properly validate certain block-size data. A local attacker
could use this to cause a denial of service (system crash). (CVE-2017-7308)
Andrey Konovalov discovered a use-after-free vulnerability in the DCCP
implementation in the Linux kernel. A local attacker could use this to
cause a denial of service (system crash) or possibly gain administrative
privileges. (CVE-2017-6074)
It was discovered that a race condition existed in the memory manager of
the Linux kernel when handling copy-on-write breakage of private read-only
memory mappings. A local attacker could use this to gain administrative
privileges. (CVE-2016-5195)
It was discovered that a use-after-free vulnerability existed in the block
device layer of the Linux kernel. A local attacker could use this to cau...
The problem can be corrected by updating your livepatches to the following versions: | Kernel | Version | flavors | |-----------------+----------+--------------------------| | 4.4.0-21.37 | 16.1 | generic, lowlatency | | 4.4.0-21.37 | 17.1 | generic, lowlatency | | 4.4.0-21.37 | 18.1 | generic, lowlatency | | 4.4.0-21.37 | 21.1 | generic, lowlatency | | 4.4.0-22.39 | 13.2 | generic, lowlatency | | 4.4.0-22.39 | 16.1 | generic, lowlatency | | 4.4.0-22.39 | 17.1 | generic, lowlatency | | 4.4.0-22.39 | 18.1 | generic, lowlatency | | 4.4.0-22.39 | 21.1 | generic, lowlatency | | 4.4.0-22.40 | 16.1 | generic, lowlatency | | 4.4.0-22.40 | 17.1 | generic, lowlatency | | 4.4.0-22.40 | 18.1 | generic, lowlatency | | 4.4.0-22.40 | 21.1 | generic, lowlatency | | 4.4.0-24.43 | 16.1 | generic, lowlatency | | 4.4.0-24.43 | 17.1 | generic, lowlatency | | 4.4.0-24.43 | 18.1 | generic, lowlatency | | 4.4.0-24.43 | 21.1 | generic, lowlatency | | 4.4.0-28.47 | 16.1 | generic, lowlatency | | 4.4.0-28.47 | 17.1 | generic, lowlatency | | 4.4.0-28.47 | 18.1 | generic, lowlatency | | 4.4.0-28.47 | 21.1 | generic, lowlatency | | 4.4.0-31.50 | 16.1 | generic, lowlatency | | 4.4.0-31.50 | 17.1 | generic, lowlatency | | 4.4.0-31.50 | 18.1 | generic, lowlatency | | 4.4.0-31.50 | 21.1 | generic, lowlatency | | 4.4.0-34.53 | 16.1 | generic, lowlatency | | 4.4.0-34.53 | 17.1 | generic, lowlatency | | 4.4.0-34.53 | 18.1 | generic, lowlatency | | 4.4.0-34.53 | 21.1 | generic, lowlatency | | 4.4.0-36.55 | 16.1 | generic, lowlatency | | 4.4.0-36.55 | 17.1 | generic, lowlatency | | 4.4.0-36.55 | 18.1 | generic, lowlatency | | 4.4.0-36.55 | 21.1 | generic, lowlatency | | 4.4.0-38.57 | 16.1 | generic, lowlatency | | 4.4.0-38.57 | 17.1 | generic, lowlatency | | 4.4.0-38.57 | 18.1 | generic, lowlatency | | 4.4.0-38.57 | 21.1 | generic, lowlatency | | 4.4.0-42.62 | 16.1 | generic, lowlatency | | 4.4.0-42.62 | 17.1 | generic, lowlatency | | 4.4.0-42.62 | 18.1 | generic, lowlatency | | 4.4.0-42.62 | 21.1 | generic, lowlatency | | 4.4.0-43.63 | 16.1 | generic, lowlatency | | 4.4.0-43.63 | 17.1 | generic, lowlatency | | 4.4.0-43.63 | 18.1 | generic, lowlatency | | 4.4.0-43.63 | 21.1 | generic, lowlatency | | 4.4.0-45.66 | 16.1 | generic, lowlatency | | 4.4.0-45.66 | 17.1 | generic, lowlatency | | 4.4.0-45.66 | 18.1 | generic, lowlatency | | 4.4.0-45.66 | 21.1 | generic, lowlatency | | 4.4.0-47.68 | 16.1 | generic, lowlatency | | 4.4.0-47.68 | 17.1 | generic, lowlatency | | 4.4.0-47.68 | 18.1 | generic, lowlatency | | 4.4.0-47.68 | 21.1 | generic, lowlatency | | 4.4.0-51.72 | 16.1 | generic, lowlatency | | 4.4.0-51.72 | 17.1 | generic, lowlatency | | 4.4.0-51.72 | 18.1 | generic, lowlatency | | 4.4.0-51.72 | 21.1 | generic, lowlatency | | 4.4.0-53.74 | 16.1 | generic, lowlatency | | 4.4.0-53.74 | 17.1 | generic, lowlatency | | 4.4.0-53.74 | 18.1 | generic, lowlatency | | 4.4.0-53.74 | 21.1 | generic, lowlatency | | 4.4.0-57.78 | 17.1 | generic, lowlatency | | 4.4.0-57.78 | 18.1 | generic, lowlatency | | 4.4.0-57.78 | 21.1 | generic, lowlatency | | 4.4.0-59.80 | 17.1 | generic, lowlatency | | 4.4.0-59.80 | 18.1 | generic, lowlatency | | 4.4.0-59.80 | 21.1 | generic, lowlatency | | 4.4.0-62.83 | 17.1 | generic, lowlatency | | 4.4.0-62.83 | 18.1 | generic, lowlatency | | 4.4.0-62.83 | 21.1 | generic, lowlatency | | 4.4.0-63.84 | 18.1 | generic, lowlatency | | 4.4.0-63.84 | 21.1 | generic, lowlatency | | 4.4.0-64.85 | 21.1 | generic, lowlatency | | 4.4.0-66.87 | 21.1 | generic, lowlatency | | 4.4.0-67.88 | 21.1 | generic, lowlatency | | 4.4.0-70.91 | 21.1 | generic, lowlatency | | 4.4.0-71.92 | 21.1 | generic, lowlatency | Additionally, you should install an updated kernel with these fixes and reboot at your convienience.
CVE-2016-5195, CVE-2016-7910, CVE-2016-7911, CVE-2016-7912,
CVE-2016-7916, CVE-2016-8399, CVE-2016-8630, CVE-2016-8633,
CVE-2016-9191, CVE-2016-9555, CVE-2016-9756, CVE-2017-2583,
CVE-2017-6074, CVE-2017-7308
Get the latest Linux and open source security news straight to your inbox.