[USN-3445-2] Linux kernel (Trusty HWE) vulnerabilities
Several security issues were fixed in the Linux kernel.
USN-3445-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu
12.04 ESM.
Eyal Itkin discovered that the IP over IEEE 1394 (FireWire) implementation
in the Linux kernel contained a buffer overflow when handling fragmented
packets. A remote attacker could use this to possibly execute arbitrary
code with administrative privileges. (CVE-2016-8633)
Andrey Konovalov discovered that a divide-by-zero error existed in the TCP
stack implementation in the Linux kernel. A local attacker could use this
to cause a denial of service (system crash). (CVE-2017-14106)
- ID
- USN-3445-2
- Severity
- medium
- Severity from
- CVE-2016-8633
- URL
- https://ubuntu.com/security/notices/USN-3445-2
- Published
-
2017-10-11T06:14:19
(7 years ago) - Modified
-
2017-10-11T06:14:19
(7 years ago) - Other Advisories
-
- DSA-3981-1
- ELSA-2017-2930
- ELSA-2017-3200
- ELSA-2017-3533
- ELSA-2017-3534
- ELSA-2017-3535
- ELSA-2017-3635
- ELSA-2018-1062
- ELSA-2018-4040
- ELSA-2018-4041
- ELSA-2018-4235
- RHSA-2017:2930
- RHSA-2017:2931
- RHSA-2017:3200
- RHSA-2018:0676
- RHSA-2018:1062
- SUSE-SU-2017:0333-1
- SUSE-SU-2017:0407-1
- SUSE-SU-2017:0437-1
- SUSE-SU-2017:0464-1
- SUSE-SU-2017:0471-1
- SUSE-SU-2017:0494-1
- SUSE-SU-2017:1102-1
- SUSE-SU-2017:2847-1
- SUSE-SU-2017:2869-1
- SUSE-SU-2017:2908-1
- SUSE-SU-2017:2920-1
- SUSE-SU-2017:2956-1
- SUSE-SU-2018:0011-1
- SUSE-SU-2018:0040-1
- SUSE-SU-2018:0180-1
- USN-3161-1
- USN-3161-2
- USN-3161-3
- USN-3161-4
- USN-3162-1
- USN-3162-2
- USN-3443-1
- USN-3443-2
- USN-3443-3
- USN-3444-1
- USN-3444-2
- USN-3445-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |