1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-3083-2

[USN-3083-2] Linux kernel (Trusty HWE) vulnerabilities

Severity High
CVEs 2
Info Vulnerabilities

Several security issues were fixed in the kernel.

USN-3083-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu
12.04 LTS.

Dmitry Vyukov discovered that the IPv6 implementation in the Linux kernel
did not properly handle options data, including a use-after-free. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2016-3841)

It was discovered that a race condition existed when handling heartbeat-
timeout events in the SCTP implementation of the Linux kernel. A remote
attacker could use this to cause a denial of service. (CVE-2015-8767)

ID
USN-3083-2
Severity
high
Severity from
CVE-2016-3841
URL
https://ubuntu.com/security/notices/USN-3083-2
Published
2016-09-19T18:41:17
(8 years ago)
Modified
2016-09-19T18:41:17
(8 years ago)
Other Advisories
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date