Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 493
Alerts This Week
Warning Icon 1 493

Ubuntu 12.04 LTS: USN-2443-1 Moderate: Kernel Security Issues

ubuntu
Calendar Grey December 12, 2014
Dist Ubuntu Esm H88
Multiple vulnerabilities in the Linux kernel patched via a recent release, mitigating significant security risks and enhancing system integrity.
Several security issues were fixed in the kernel.

Summary

Several security issues were fixed in the kernel.

Software Description:

- linux: Linux kernel

Details:

An information leak in the Linux kernel was discovered that could leak the

high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine

(KVM) paravirt guests. A user in the guest OS could exploit this leak to

obtain information that could potentially be used to aid in attacking the

kernel. (CVE-2014-8134)

Rabin Vincent, Robert Swiecki, Russell King discovered that the ftrace

subsystem of the Linux kernel does not properly handle private syscall

numbers. A local user could exploit this flaw to cause a denial of service

(OOPS). (CVE-2014-7826)

Rabin Vincent, Robert Swiecki, Russell Kinglaw discovered a flaw in how the

perf subsystem of the Linux kernel handles private systecall numbers. A

local user could exploit this to cause a denial of service (OOPS) or bypass

ASLR protections via a crafted application. (CVE-2014-7825)

A null pointer der...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
  linux-image-3.2.0-74-generic    3.2.0-74.109
  linux-image-3.2.0-74-generic-pae  3.2.0-74.109
  linux-image-3.2.0-74-highbank   3.2.0-74.109
  linux-image-3.2.0-74-omap       3.2.0-74.109
  linux-image-3.2.0-74-powerpc-smp  3.2.0-74.109
  linux-image-3.2.0-74-powerpc64-smp  3.2.0-74.109
  linux-image-3.2.0-74-virtual    3.2.0-74.109

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References

https://ubuntu.com/security/notices/USN-2443-1

CVE-2014-7825, CVE-2014-7826, CVE-2014-7841, CVE-2014-8134,

CVE-2014-8884, CVE-2014-9090

December 12, 2014

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.