
USN-3445-1: Linux kernel vulnerabilities
USN-3445-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-3445-1 10th October, 2017 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux – Linux kernel Details Eyal Itkin discovered that the IP over IEEE 1394 (FireWire) implementationin the Linux kernel contained a buffer overflow when handling fragmentedpackets. A remote attacker could use this to possibly execute arbitrarycode with administrative privileges. (CVE-2016-8633) Andrey Konovalov discovered that a divide-by-zero error existed in the TCPstack implementation in the Linux kernel. A local attacker could use thisto cause a denial of service (system crash). (CVE-2017-14106) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 14.04 LTS: linux-image-3.13.0-133-powerpc64-smp 3.13.0-133.182 linux-image-powerpc-smp 3.13.0.133.142 linux-image-powerpc-e500mc 3.13.0.133.142 linux-image-3.13.0-133-powerpc-e500mc 3.13.0-133.182 linux-image-3.13.0-133-powerpc-e500 3.13.0-133.182 linux-image-generic 3.13.0.133.142 [ more… ]