[USN-2840-1] Linux kernel vulnerabilities

Severity Medium

CVEs 2

Several security issues were fixed in the kernel.

Dmitry Vyukov discovered that the Linux kernel's keyring handler attempted
to garbage collect incompletely instantiated keys. A local unprivileged
attacker could use this to cause a denial of service (system crash).
(CVE-2015-7872)

Jan Beulich discovered that the KVM svm hypervisor implementation in the
Linux kernel did not properly catch Debug exceptions on AMD processors. An
attacker in a guest virtual machine could use this to cause a denial of
service (system crash) in the host OS. (CVE-2015-8104)

ID

USN-2840-1

Severity

medium

Severity from

CVE-2015-8104

URL

https://ubuntu.com/security/notices/USN-2840-1

Published