USN-3522-1: Linux kernel vulnerability
USN-3522-1: Linux kernel vulnerability Ubuntu Security Notice USN-3522-1 9th January, 2018 linux, linux-aws, linux-euclid, linux-kvm vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux – Linux kernel linux-aws – Linux kernel for Amazon Web Services (AWS) systems linux-euclid – Linux kernel for Intel Euclid systems linux-kvm – Linux kernel for cloud environments Details Jann Horn discovered that microprocessors utilizing speculative executionand indirect branch prediction may allow unauthorized memory reads viasidechannel attacks. This flaw is known as Meltdown. A local attacker coulduse this to expose sensitive information, including kernel memory.(CVE-2017-5754) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: linux-image-4.4.0-108-lowlatency 4.4.0-108.131 linux-image-euclid 4.4.0.9021.21 linux-image-4.4.0-108-generic 4.4.0-108.131 linux-image-4.4.0-9021-euclid 4.4.0-9021.22 linux-image-generic 4.4.0.108.113 linux-image-aws 4.4.0.1047.49 linux-image-kvm [ more… ]
