[USN-2465-1] Linux kernel (Trusty HWE) vulnerabilities
Several security issues were fixed in the kernel.
A null pointer dereference flaw was discovered in the the Linux kernel's
SCTP implementation when ASCONF is used. A remote attacker could exploit
this flaw to cause a denial of service (system crash) via a malformed INIT
chunk. (CVE-2014-7841)
A race condition with MMIO and PIO transactions in the KVM (Kernel Virtual
Machine) subsystem of the Linux kernel was discovered. A guest OS user
could exploit this flaw to cause a denial of service (guest OS crash) via a
specially crafted application. (CVE-2014-7842)
Miloš Prchlík reported a flaw in how the ARM64 platform handles a single
byte overflow in __clear_user. A local user could exploit this flaw to
cause a denial of service (system crash) by reading one byte beyond a
/dev/zero page boundary. (CVE-2014-7843)
A stack buffer overflow was discovered in the ioctl command handling for
the Technotrend/Hauppauge USB DEC devices driver. A local user could
exploit this flaw to cause a denial of service (system crash) or possibly
gain privileges. (CVE-2014-8884)
- ID
- USN-2465-1
- Severity
- medium
- Severity from
- CVE-2014-8884
- URL
- https://ubuntu.com/security/notices/USN-2465-1
- Published
-
2015-01-13T11:43:54
(9 years ago) - Modified
-
2015-01-13T11:43:54
(9 years ago) - Other Advisories
-
- ALAS-2014-455
- DSA-3093-1
- ELSA-2015-0087
- ELSA-2015-0102
- ELSA-2015-0290
- ELSA-2015-0864
- ELSA-2015-2152
- ELSA-2015-3003
- ELSA-2015-3004
- ELSA-2015-3005
- ELSA-2015-3013
- ELSA-2016-0855
- ELSA-2016-3502
- FEDORA-2014-15159
- FEDORA-2014-15200
- FEDORA-2014-16632
- FEDORA-2014-17244
- FEDORA-2014-17283
- FEDORA-2015-0515
- FEDORA-2015-1672
- FEDORA-2015-3594
- FEDORA-2015-5024
- FEDORA-2015-6294
- FEDORA-2015-8518
- RHSA-2015:0087
- RHSA-2015:0102
- RHSA-2015:0290
- RHSA-2015:0864
- RHSA-2015:2152
- RHSA-2016:0855
- SUSE-SU-2015:0481-1
- SUSE-SU-2015:0529-1
- SUSE-SU-2015:0581-1
- SUSE-SU-2015:0652-1
- SUSE-SU-2015:0736-1
- SUSE-SU-2015:1174-1
- SUSE-SU-2015:1376-1
- USN-2441-1
- USN-2442-1
- USN-2443-1
- USN-2444-1
- USN-2463-1
- USN-2464-1
- USN-2466-1
- USN-2467-1
- USN-2468-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |