1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-3207-1

[USN-3207-1] Linux kernel vulnerabilities

Severity High
Affected Packages 9
CVEs 3
Info Packages Vulnerabilities

Several security issues were fixed in the kernel.

It was discovered that a use-after-free vulnerability existed in the block
device layer of the Linux kernel. A local attacker could use this to cause
a denial of service (system crash) or possibly gain administrative
privileges. (CVE-2016-7910)

Dmitry Vyukov discovered a use-after-free vulnerability in the
sys_ioprio_get() function in the Linux kernel. A local attacker could use
this to cause a denial of service (system crash) or possibly gain
administrative privileges. (CVE-2016-7911)

Andrey Konovalov discovered a use-after-free vulnerability in the DCCP
implementation in the Linux kernel. A local attacker could use this to
cause a denial of service (system crash) or possibly gain administrative
privileges. (CVE-2017-6074)

Package Affected Version
pkg:deb/ubuntu/linux-image-extra-3.13.0-110-generic?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc64-smp?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc64-emb?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-smp?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-e500mc?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-e500?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-lowlatency?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-generic?distro=trusty < 3.13.0-110.157
pkg:deb/ubuntu/linux-image-3.13.0-110-generic-lpae?distro=trusty < 3.13.0-110.157
ID
USN-3207-1
Severity
high
URL
https://ubuntu.com/security/notices/USN-3207-1
Published
2017-02-22T00:33:22
(7 years ago)
Modified
2017-02-22T00:33:22
(7 years ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/linux-image-extra-3.13.0-110-generic?distro=trusty ubuntu linux-image-extra-3.13.0-110-generic < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc64-smp?distro=trusty ubuntu linux-image-3.13.0-110-powerpc64-smp < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc64-emb?distro=trusty ubuntu linux-image-3.13.0-110-powerpc64-emb < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-smp?distro=trusty ubuntu linux-image-3.13.0-110-powerpc-smp < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-e500mc?distro=trusty ubuntu linux-image-3.13.0-110-powerpc-e500mc < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-powerpc-e500?distro=trusty ubuntu linux-image-3.13.0-110-powerpc-e500 < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-lowlatency?distro=trusty ubuntu linux-image-3.13.0-110-lowlatency < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-generic?distro=trusty ubuntu linux-image-3.13.0-110-generic < 3.13.0-110.157 trusty
Affected pkg:deb/ubuntu/linux-image-3.13.0-110-generic-lpae?distro=trusty ubuntu linux-image-3.13.0-110-generic-lpae < 3.13.0-110.157 trusty
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date