[USN-3170-2] Linux kernel (Raspberry Pi 2) vulnerabilities
Severity
High
CVEs
2
Several security issues were fixed in the kernel.
Andrey Konovalov discovered that the ipv6 icmp implementation in the Linux
kernel did not properly check data structures on send. A remote attacker
could use this to cause a denial of service (system crash). (CVE-2016-9919)
Andrey Konovalov discovered that signed integer overflows existed in the
setsockopt() system call when handling the SO_SNDBUFFORCE and
SO_RCVBUFFORCE options. A local attacker with the CAP_NET_ADMIN capability
could use this to cause a denial of service (system crash or memory
corruption). (CVE-2016-9793)
- ID
- USN-3170-2
- Severity
- high
- Severity from
- CVE-2016-9793
- URL
- https://ubuntu.com/security/notices/USN-3170-2
- Published
-
2017-01-11T09:24:25
(7 years ago) - Modified
-
2017-01-11T09:24:25
(7 years ago) - Other Advisories
-
-
ALAS-2017-782
-
ASA-201612-10
-
ASA-201612-14
-
ELSA-2017-0933
-
ELSA-2017-3508
-
ELSA-2017-3509
-
ELSA-2017-3510
-
FEDORA-2016-107f03cc00
-
FEDORA-2016-5aff4a6bbc
-
FEDORA-2016-5cb5b4082d
-
RHSA-2017:0931
-
RHSA-2017:0933
-
SUSE-SU-2017:0181-1
-
SUSE-SU-2017:0333-1
-
SUSE-SU-2017:0407-1
-
SUSE-SU-2017:0437-1
-
SUSE-SU-2017:0464-1
-
SUSE-SU-2017:0471-1
-
SUSE-SU-2017:0494-1
-
SUSE-SU-2017:1102-1
-
USN-3168-1
-
USN-3168-2
-
USN-3169-1
-
USN-3169-2
-
USN-3169-3
-
USN-3169-4
-
USN-3170-1
-
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |