[USN-3256-1] Linux kernel vulnerability

Severity High

Affected Packages 22

CVEs 1

The system could be made to crash under certain conditions.

Andrey Konovalov discovered that the AF_PACKET implementation in the Linux
kernel did not properly validate certain block-size data. A local attacker
could use this to cause a denial of service (system crash).

Package	Affected Version
pkg:deb/ubuntu/linux-image-extra-4.4.0-72-generic?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-extra-4.4.0-1010-gke?distro=xenial	< 4.4.0-1010.10
pkg:deb/ubuntu/linux-image-extra-3.13.0-116-generic?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc64-smp?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc64-emb?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc-smp?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc-e500mc?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-lowlatency?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-generic?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-72-generic-lpae?distro=xenial	< 4.4.0-72.93
pkg:deb/ubuntu/linux-image-4.4.0-1055-snapdragon?distro=xenial	< 4.4.0-1055.59
pkg:deb/ubuntu/linux-image-4.4.0-1052-raspi2?distro=xenial	< 4.4.0-1052.59
pkg:deb/ubuntu/linux-image-4.4.0-1013-aws?distro=xenial	< 4.4.0-1013.22
pkg:deb/ubuntu/linux-image-4.4.0-1010-gke?distro=xenial	< 4.4.0-1010.10
pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc64-smp?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc64-emb?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-smp?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-e500mc?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-e500?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-lowlatency?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-generic?distro=trusty	< 3.13.0-116.163
pkg:deb/ubuntu/linux-image-3.13.0-116-generic-lpae?distro=trusty	< 3.13.0-116.163

ID

USN-3256-1

Severity

high

URL

https://ubuntu.com/security/notices/USN-3256-1

Published

2017-04-05T03:38:55
(7 years ago)

Modified

2017-04-05T03:38:55
(7 years ago)

Other Advisories

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:deb/ubuntu/linux-image-extra-4.4.0-72-generic?distro=xenial	ubuntu	linux-image-extra-4.4.0-72-generic	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-extra-4.4.0-1010-gke?distro=xenial	ubuntu	linux-image-extra-4.4.0-1010-gke	< 4.4.0-1010.10	xenial
Affected	pkg:deb/ubuntu/linux-image-extra-3.13.0-116-generic?distro=trusty	ubuntu	linux-image-extra-3.13.0-116-generic	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc64-smp?distro=xenial	ubuntu	linux-image-4.4.0-72-powerpc64-smp	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc64-emb?distro=xenial	ubuntu	linux-image-4.4.0-72-powerpc64-emb	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc-smp?distro=xenial	ubuntu	linux-image-4.4.0-72-powerpc-smp	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-powerpc-e500mc?distro=xenial	ubuntu	linux-image-4.4.0-72-powerpc-e500mc	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-lowlatency?distro=xenial	ubuntu	linux-image-4.4.0-72-lowlatency	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-generic?distro=xenial	ubuntu	linux-image-4.4.0-72-generic	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-72-generic-lpae?distro=xenial	ubuntu	linux-image-4.4.0-72-generic-lpae	< 4.4.0-72.93	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-1055-snapdragon?distro=xenial	ubuntu	linux-image-4.4.0-1055-snapdragon	< 4.4.0-1055.59	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-1052-raspi2?distro=xenial	ubuntu	linux-image-4.4.0-1052-raspi2	< 4.4.0-1052.59	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-1013-aws?distro=xenial	ubuntu	linux-image-4.4.0-1013-aws	< 4.4.0-1013.22	xenial
Affected	pkg:deb/ubuntu/linux-image-4.4.0-1010-gke?distro=xenial	ubuntu	linux-image-4.4.0-1010-gke	< 4.4.0-1010.10	xenial
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc64-smp?distro=trusty	ubuntu	linux-image-3.13.0-116-powerpc64-smp	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc64-emb?distro=trusty	ubuntu	linux-image-3.13.0-116-powerpc64-emb	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-smp?distro=trusty	ubuntu	linux-image-3.13.0-116-powerpc-smp	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-e500mc?distro=trusty	ubuntu	linux-image-3.13.0-116-powerpc-e500mc	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-powerpc-e500?distro=trusty	ubuntu	linux-image-3.13.0-116-powerpc-e500	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-lowlatency?distro=trusty	ubuntu	linux-image-3.13.0-116-lowlatency	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-generic?distro=trusty	ubuntu	linux-image-3.13.0-116-generic	< 3.13.0-116.163	trusty
Affected	pkg:deb/ubuntu/linux-image-3.13.0-116-generic-lpae?distro=trusty	ubuntu	linux-image-3.13.0-116-generic-lpae	< 3.13.0-116.163	trusty

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date