USN-2949-1

Details

Venkatesh Pottem discovered a use-after-free vulnerability in the Linux kernel's CXGB3 driver. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2015-8812)

Xiaofei Rex Guo discovered a timing side channel vulnerability in the Linux Extended Verification Module (EVM). An attacker could use this to affect system integrity. (CVE-2016-2085)

David Herrmann discovered that the Linux kernel incorrectly accounted file descriptors to the original opener for in-flight file descriptors sent over a unix domain socket. A local attacker could use this to cause a denial of service (resource exhaustion). (CVE-2016-2550)

It was discovered that the Linux kernel did not enforce limits on the amount of data allocated to buffer pipes. A local attacker could use this to cause a denial of service (resource exhaustion). (CVE-2016-2847)

Affected Packages

linux-lts-vivid

Ubuntu 14.04 LTS

Fixed in:

3.19.0-58.64~14.04.1

References

REPORThttps://ubuntu.com/security/CVE-2015-8812 REPORThttps://ubuntu.com/security/CVE-2016-2085 REPORThttps://ubuntu.com/security/CVE-2016-2550 REPORThttps://ubuntu.com/security/CVE-2016-2847 ADVISORYhttps://ubuntu.com/security/notices/USN-2949-1

USN-2949-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline