[USN-3468-3] Linux kernel (GCP) vulnerabilities
Several security issues were fixed in the Linux kernel.
It was discovered that the KVM subsystem in the Linux kernel did not
properly bound guest IRQs. A local attacker in a guest VM could use this to
cause a denial of service (host system crash). (CVE-2017-1000252)
It was discovered that the Flash-Friendly File System (f2fs) implementation
in the Linux kernel did not properly validate superblock metadata. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2017-10663)
Anthony Perard discovered that the Xen virtual block driver did not
properly initialize some data structures before passing them to user space.
A local attacker in a guest VM could use this to expose sensitive
information from the host OS or other guest VMs. (CVE-2017-10911)
It was discovered that a use-after-free vulnerability existed in the POSIX
message queue implementation in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-11176)
Dave Chinner discovered that the XFS filesystem did not enforce that the
realtime inode flag was settable only on filesystems on a realtime device.
A local attacker could use this to cause a denial of service (system
crash). (CVE-2017-14340)
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-extra-4.10.0-1008-gcp?distro=xenial | < 4.10.0-1008.8 |
pkg:deb/ubuntu/linux-image-4.10.0-1008-gcp?distro=xenial | < 4.10.0-1008.8 |
- ID
- USN-3468-3
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-3468-3
- Published
-
2017-10-31T09:20:23
(6 years ago) - Modified
-
2017-10-31T09:20:23
(6 years ago) - Other Advisories
-
- ALAS-2017-868
- ALAS-2017-914
- ALPINE:CVE-2017-10911
- DSA-3920-1
- DSA-3927-1
- DSA-3945-1
- DSA-3981-1
- ELSA-2017-2930
- ELSA-2017-3632
- ELSA-2017-3633
- ELSA-2018-0169
- ELSA-2018-1062
- FEDORA-2017-544eef948f
- FEDORA-2017-5c6a9b07a3
- FEDORA-2017-98548b066b
- FEDORA-2017-c3149b5fcb
- FEDORA-2017-deb70b495e
- RHSA-2017:2930
- RHSA-2017:2931
- RHSA-2018:0169
- RHSA-2018:0676
- RHSA-2018:1062
- SUSE-SU-2017:1795-1
- SUSE-SU-2017:1812-1
- SUSE-SU-2017:2342-1
- SUSE-SU-2017:2389-1
- SUSE-SU-2017:2525-1
- SUSE-SU-2017:2694-1
- SUSE-SU-2017:2847-1
- SUSE-SU-2017:2869-1
- SUSE-SU-2017:2908-1
- SUSE-SU-2017:2920-1
- SUSE-SU-2017:2924-1
- SUSE-SU-2017:2936-1
- SUSE-SU-2017:2946-1
- SUSE-SU-2017:2956-1
- SUSE-SU-2017:3265-1
- SUSE-SU-2018:0040-1
- USN-3405-1
- USN-3405-2
- USN-3414-1
- USN-3420-1
- USN-3420-2
- USN-3468-1
- USN-3468-2
- USN-3469-1
- USN-3469-2
- USN-3470-1
- USN-3470-2
- XSA-216
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-extra-4.10.0-1008-gcp?distro=xenial | ubuntu | linux-image-extra-4.10.0-1008-gcp | < 4.10.0-1008.8 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.10.0-1008-gcp?distro=xenial | ubuntu | linux-image-4.10.0-1008-gcp | < 4.10.0-1008.8 | xenial |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |