1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-3420-1

[USN-3420-1] Linux kernel vulnerabilities

Severity High
Affected Packages 14
CVEs 4
Info Packages Vulnerabilities

Several security issues were fixed in the Linux kernel.

It was discovered that a buffer overflow existed in the Bluetooth stack of
the Linux kernel when handling L2CAP configuration responses. A physically
proximate attacker could use this to cause a denial of service (system
crash). (CVE-2017-1000251)

It was discovered that the Flash-Friendly File System (f2fs) implementation
in the Linux kernel did not properly validate superblock metadata. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2017-10663)

It was discovered that a buffer overflow existed in the ioctl handling code
in the ISDN subsystem of the Linux kernel. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2017-12762)

Pengfei Wang discovered that a race condition existed in the NXP SAA7164 TV
Decoder driver for the Linux kernel. A local attacker could use this to
cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2017-8831)

Package Affected Version
pkg:deb/ubuntu/linux-image-extra-4.4.0-96-generic?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-extra-4.4.0-1031-gke?distro=xenial < 4.4.0-1031.31
pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc64-smp?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc64-emb?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc-smp?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc-e500mc?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-lowlatency?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-generic?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-96-generic-lpae?distro=xenial < 4.4.0-96.119
pkg:deb/ubuntu/linux-image-4.4.0-1076-snapdragon?distro=xenial < 4.4.0-1076.81
pkg:deb/ubuntu/linux-image-4.4.0-1074-raspi2?distro=xenial < 4.4.0-1074.82
pkg:deb/ubuntu/linux-image-4.4.0-1035-aws?distro=xenial < 4.4.0-1035.44
pkg:deb/ubuntu/linux-image-4.4.0-1031-gke?distro=xenial < 4.4.0-1031.31
pkg:deb/ubuntu/linux-image-4.4.0-1007-kvm?distro=xenial < 4.4.0-1007.12
ID
USN-3420-1
Severity
high
URL
https://ubuntu.com/security/notices/USN-3420-1
Published
2017-09-18T22:21:52
(7 years ago)
Modified
2017-09-18T22:21:52
(7 years ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/linux-image-extra-4.4.0-96-generic?distro=xenial ubuntu linux-image-extra-4.4.0-96-generic < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-extra-4.4.0-1031-gke?distro=xenial ubuntu linux-image-extra-4.4.0-1031-gke < 4.4.0-1031.31 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc64-smp?distro=xenial ubuntu linux-image-4.4.0-96-powerpc64-smp < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc64-emb?distro=xenial ubuntu linux-image-4.4.0-96-powerpc64-emb < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc-smp?distro=xenial ubuntu linux-image-4.4.0-96-powerpc-smp < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-powerpc-e500mc?distro=xenial ubuntu linux-image-4.4.0-96-powerpc-e500mc < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-lowlatency?distro=xenial ubuntu linux-image-4.4.0-96-lowlatency < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-generic?distro=xenial ubuntu linux-image-4.4.0-96-generic < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-96-generic-lpae?distro=xenial ubuntu linux-image-4.4.0-96-generic-lpae < 4.4.0-96.119 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-1076-snapdragon?distro=xenial ubuntu linux-image-4.4.0-1076-snapdragon < 4.4.0-1076.81 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-1074-raspi2?distro=xenial ubuntu linux-image-4.4.0-1074-raspi2 < 4.4.0-1074.82 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-1035-aws?distro=xenial ubuntu linux-image-4.4.0-1035-aws < 4.4.0-1035.44 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-1031-gke?distro=xenial ubuntu linux-image-4.4.0-1031-gke < 4.4.0-1031.31 xenial
Affected pkg:deb/ubuntu/linux-image-4.4.0-1007-kvm?distro=xenial ubuntu linux-image-4.4.0-1007-kvm < 4.4.0-1007.12 xenial
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date