[USN-3468-1] Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel.
It was discovered that the KVM subsystem in the Linux kernel did not
properly bound guest IRQs. A local attacker in a guest VM could use this to
cause a denial of service (host system crash). (CVE-2017-1000252)
It was discovered that the Flash-Friendly File System (f2fs) implementation
in the Linux kernel did not properly validate superblock metadata. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2017-10663)
Anthony Perard discovered that the Xen virtual block driver did not
properly initialize some data structures before passing them to user space.
A local attacker in a guest VM could use this to expose sensitive
information from the host OS or other guest VMs. (CVE-2017-10911)
It was discovered that a use-after-free vulnerability existed in the POSIX
message queue implementation in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-11176)
Dave Chinner discovered that the XFS filesystem did not enforce that the
realtime inode flag was settable only on filesystems on a realtime device.
A local attacker could use this to cause a denial of service (system
crash). (CVE-2017-14340)
- ID
- USN-3468-1
- Severity
- high
- Severity from
- CVE-2017-10663
- URL
- https://ubuntu.com/security/notices/USN-3468-1
- Published
-
2017-10-31T09:05:45
(6 years ago) - Modified
-
2017-10-31T09:05:45
(6 years ago) - Other Advisories
-
- ALAS-2017-868
- ALAS-2017-914
- ALPINE:CVE-2017-10911
- DSA-3920-1
- DSA-3927-1
- DSA-3945-1
- DSA-3981-1
- ELSA-2017-2930
- ELSA-2017-3632
- ELSA-2017-3633
- ELSA-2018-0169
- ELSA-2018-1062
- FEDORA-2017-544eef948f
- FEDORA-2017-5c6a9b07a3
- FEDORA-2017-98548b066b
- FEDORA-2017-c3149b5fcb
- FEDORA-2017-deb70b495e
- RHSA-2017:2930
- RHSA-2017:2931
- RHSA-2018:0169
- RHSA-2018:0676
- RHSA-2018:1062
- SUSE-SU-2017:1795-1
- SUSE-SU-2017:1812-1
- SUSE-SU-2017:2342-1
- SUSE-SU-2017:2389-1
- SUSE-SU-2017:2525-1
- SUSE-SU-2017:2694-1
- SUSE-SU-2017:2847-1
- SUSE-SU-2017:2869-1
- SUSE-SU-2017:2908-1
- SUSE-SU-2017:2920-1
- SUSE-SU-2017:2924-1
- SUSE-SU-2017:2936-1
- SUSE-SU-2017:2946-1
- SUSE-SU-2017:2956-1
- SUSE-SU-2017:3265-1
- SUSE-SU-2018:0040-1
- USN-3405-1
- USN-3405-2
- USN-3414-1
- USN-3420-1
- USN-3420-2
- USN-3468-2
- USN-3468-3
- USN-3469-1
- USN-3469-2
- USN-3470-1
- USN-3470-2
- XSA-216
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |