USN-3084-1: Linux kernel vulnerabilities
USN-3084-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-3084-1 19th September, 2016 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary Several security issues were fixed in the kernel. Software description linux – Linux kernel Details Pengfei Wang discovered a race condition in the audit subsystem in theLinux kernel. A local attacker could use this to corrupt audit logs ordisrupt system-call auditing. (CVE-2016-6136) It was discovered that the powerpc and powerpc64 hypervisor-mode KVMimplementation in the Linux kernel for did not properly maintain stateabout transactional memory. An unprivileged attacker in a guest could causea denial of service (CPU lockup) in the host OS. (CVE-2016-5412) Pengfei Wang discovered a race condition in the Chrome OS embeddedcontroller device driver in the Linux kernel. A local attacker could usethis to cause a denial of service (system crash). [ more… ]