[USN-2873-1] Linux kernel (Utopic HWE) vulnerability
Severity
High
Affected Packages
8
CVEs
1
The system could be made to crash or run programs as an administrator.
Yevgeny Pats discovered that the session keyring implementation in the
Linux kernel did not properly reference count when joining an existing
session keyring. A local attacker could use this to cause a denial of
service (system crash) or possibly execute arbitrary code with
administrative privileges.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-extra-3.16.0-59-generic?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc64-smp?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc64-emb?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc-smp?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc-e500mc?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-lowlatency?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-generic?distro=trusty | < 3.16.0-59.79~14.04.1 |
pkg:deb/ubuntu/linux-image-3.16.0-59-generic-lpae?distro=trusty | < 3.16.0-59.79~14.04.1 |
- ID
- USN-2873-1
- Severity
- high
- URL
- https://ubuntu.com/security/notices/USN-2873-1
- Published
-
2016-01-19T16:54:04
(8 years ago) - Modified
-
2016-01-19T16:54:04
(8 years ago) - Other Advisories
-
- ALAS-2016-642
- DSA-3448-1
- ELSA-2016-0064
- ELSA-2016-3509
- ELSA-2016-3510
- FEDORA-2016-5d43766e33
- FEDORA-2016-b59fd603be
- RHSA-2016:0064
- RHSA-2016:0065
- SUSE-SU-2016:0186-1
- SUSE-SU-2016:0205-1
- SUSE-SU-2016:0341-1
- SUSE-SU-2016:0745-1
- SUSE-SU-2016:0746-1
- SUSE-SU-2016:0747-1
- SUSE-SU-2016:0750-1
- SUSE-SU-2016:0751-1
- SUSE-SU-2016:0752-1
- SUSE-SU-2016:0753-1
- SUSE-SU-2016:0755-1
- SUSE-SU-2016:0756-1
- SUSE-SU-2016:0757-1
- USN-2870-1
- USN-2870-2
- USN-2871-1
- USN-2871-2
- USN-2872-1
- USN-2872-2
- USN-2872-3
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-extra-3.16.0-59-generic?distro=trusty | ubuntu | linux-image-extra-3.16.0-59-generic | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc64-smp?distro=trusty | ubuntu | linux-image-3.16.0-59-powerpc64-smp | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc64-emb?distro=trusty | ubuntu | linux-image-3.16.0-59-powerpc64-emb | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc-smp?distro=trusty | ubuntu | linux-image-3.16.0-59-powerpc-smp | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-powerpc-e500mc?distro=trusty | ubuntu | linux-image-3.16.0-59-powerpc-e500mc | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-lowlatency?distro=trusty | ubuntu | linux-image-3.16.0-59-lowlatency | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-generic?distro=trusty | ubuntu | linux-image-3.16.0-59-generic | < 3.16.0-59.79~14.04.1 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.16.0-59-generic-lpae?distro=trusty | ubuntu | linux-image-3.16.0-59-generic-lpae | < 3.16.0-59.79~14.04.1 | trusty |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |