[USN-3250-1] Linux kernel vulnerability
Severity
High
Affected Packages
9
CVEs
1
The system could be made to crash or run programs as an administrator.
It was discovered that the xfrm framework for transforming packets in the
Linux kernel did not properly validate data received from user space. A
local attacker could use this to cause a denial of service (system crash)
or execute arbitrary code with administrative privileges.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-extra-3.13.0-115-generic?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc64-smp?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc64-emb?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-smp?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-e500mc?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-e500?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-lowlatency?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-generic?distro=trusty | < 3.13.0-115.162 |
pkg:deb/ubuntu/linux-image-3.13.0-115-generic-lpae?distro=trusty | < 3.13.0-115.162 |
- ID
- USN-3250-1
- Severity
- high
- URL
- https://ubuntu.com/security/notices/USN-3250-1
- Published
-
2017-03-29T22:37:52
(7 years ago) - Modified
-
2017-03-29T22:37:52
(7 years ago) - Other Advisories
-
- ALAS-2017-811
- ELSA-2017-2930
- ELSA-2017-3539
- ELSA-2017-3566
- ELSA-2017-3567
- FEDORA-2017-02174df32f
- FEDORA-2017-93dec9eba5
- RHSA-2017:2930
- RHSA-2017:2931
- SUSE-SU-2017:0864-1
- SUSE-SU-2017:0865-1
- SUSE-SU-2017:0866-1
- SUSE-SU-2017:0867-1
- SUSE-SU-2017:0868-1
- SUSE-SU-2017:0869-1
- SUSE-SU-2017:0870-1
- SUSE-SU-2017:0871-1
- SUSE-SU-2017:0872-1
- SUSE-SU-2017:0873-1
- SUSE-SU-2017:0874-1
- SUSE-SU-2017:0875-1
- SUSE-SU-2017:0876-1
- SUSE-SU-2017:0877-1
- SUSE-SU-2017:0878-1
- SUSE-SU-2017:0879-1
- SUSE-SU-2017:0880-1
- SUSE-SU-2017:0881-1
- SUSE-SU-2017:0882-1
- SUSE-SU-2017:0883-1
- SUSE-SU-2017:0884-1
- SUSE-SU-2017:0885-1
- SUSE-SU-2017:0886-1
- SUSE-SU-2017:0887-1
- SUSE-SU-2017:0888-1
- SUSE-SU-2017:0889-1
- SUSE-SU-2017:1301-1
- SUSE-SU-2017:1990-1
- SUSE-SU-2017:2342-1
- SUSE-SU-2017:2525-1
- USN-3248-1
- USN-3249-1
- USN-3249-2
- USN-3250-2
- USN-3251-1
- USN-3251-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-extra-3.13.0-115-generic?distro=trusty | ubuntu | linux-image-extra-3.13.0-115-generic | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc64-smp?distro=trusty | ubuntu | linux-image-3.13.0-115-powerpc64-smp | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc64-emb?distro=trusty | ubuntu | linux-image-3.13.0-115-powerpc64-emb | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-smp?distro=trusty | ubuntu | linux-image-3.13.0-115-powerpc-smp | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-e500mc?distro=trusty | ubuntu | linux-image-3.13.0-115-powerpc-e500mc | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-powerpc-e500?distro=trusty | ubuntu | linux-image-3.13.0-115-powerpc-e500 | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-lowlatency?distro=trusty | ubuntu | linux-image-3.13.0-115-lowlatency | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-generic?distro=trusty | ubuntu | linux-image-3.13.0-115-generic | < 3.13.0-115.162 | trusty | ||
Affected | pkg:deb/ubuntu/linux-image-3.13.0-115-generic-lpae?distro=trusty | ubuntu | linux-image-3.13.0-115-generic-lpae | < 3.13.0-115.162 | trusty |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |