[USN-3097-2] Linux kernel (OMAP4) vulnerabilities

Severity Medium

CVEs 3

Several security issues were fixed in the kernel.

Marco Grassi discovered a use-after-free condition could occur in the TCP
retransmit queue handling code in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2016-6828)

Pengfei Wang discovered a race condition in the audit subsystem in the
Linux kernel. A local attacker could use this to corrupt audit logs or
disrupt system-call auditing. (CVE-2016-6136)

Pengfei Wang discovered a race condition in the Adaptec AAC RAID controller
driver in the Linux kernel when handling ioctl()s. A local attacker could
use this to cause a denial of service (system crash). (CVE-2016-6480)

ID

USN-3097-2

Severity

medium

Severity from

CVE-2016-6828

URL

https://ubuntu.com/security/notices/USN-3097-2

Published