Articles by KENNETH

USN-2949-1: Linux kernel (Vivid HWE) vulnerabilities Ubuntu Security Notice USN-2949-1 6th April, 2016 linux-lts-vivid vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in the kernel. Software description linux-lts-vivid – Linux hardware enablement kernel from Vivid for Trusty Details Venkatesh Pottem discovered a use-after-free vulnerability in the Linuxkernel's CXGB3 driver. A local attacker could use this to cause a denial ofservice (system crash) or possibly execute arbitrary code. (CVE-2015-8812) Xiaofei Rex Guo discovered a timing side channel vulnerability in the LinuxExtended Verification Module (EVM). An attacker could use this to affectsystem integrity. (CVE-2016-2085) David Herrmann discovered that the Linux kernel incorrectly accounted filedescriptors to the original opener for in-flight file descriptors sent overa unix domain socket. A local attacker could use this to cause a denial ofservice (resource [ more… ]

USN-2946-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-2946-1 6th April, 2016 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in the kernel. Software description linux – Linux kernel Details Venkatesh Pottem discovered a use-after-free vulnerability in the Linuxkernel's CXGB3 driver. A local attacker could use this to cause a denial ofservice (system crash) or possibly execute arbitrary code. (CVE-2015-8812) Xiaofei Rex Guo discovered a timing side channel vulnerability in the LinuxExtended Verification Module (EVM). An attacker could use this to affectsystem integrity. (CVE-2016-2085) David Herrmann discovered that the Linux kernel incorrectly accounted filedescriptors to the original opener for in-flight file descriptors sent overa unix domain socket. A local attacker could use this to cause a denial ofservice (resource exhaustion). (CVE-2016-2550) It was discovered that the Linux [ more… ]

USN-2946-2: Linux kernel (Trusty HWE) vulnerabilities Ubuntu Security Notice USN-2946-2 6th April, 2016 linux-lts-trusty vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary Several security issues were fixed in the kernel. Software description linux-lts-trusty – Linux hardware enablement kernel from Trusty for Precise Details Venkatesh Pottem discovered a use-after-free vulnerability in the Linuxkernel's CXGB3 driver. A local attacker could use this to cause a denial ofservice (system crash) or possibly execute arbitrary code. (CVE-2015-8812) Xiaofei Rex Guo discovered a timing side channel vulnerability in the LinuxExtended Verification Module (EVM). An attacker could use this to affectsystem integrity. (CVE-2016-2085) David Herrmann discovered that the Linux kernel incorrectly accounted filedescriptors to the original opener for in-flight file descriptors sent overa unix domain socket. A local attacker could use this to cause a denial ofservice (resource [ more… ]

USN-2947-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-2947-1 6th April, 2016 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Summary Several security issues were fixed in the kernel. Software description linux – Linux kernel Details Ralf Spenneberg discovered that the usbvision driver in the Linux kerneldid not properly sanity check the interfaces and endpoints reported by thedevice. An attacker with physical access could cause a denial of service(system crash). (CVE-2015-7833) Venkatesh Pottem discovered a use-after-free vulnerability in the Linuxkernel's CXGB3 driver. A local attacker could use this to cause a denial ofservice (system crash) or possibly execute arbitrary code. (CVE-2015-8812) Xiaofei Rex Guo discovered a timing side channel vulnerability in the LinuxExtended Verification Module (EVM). An attacker could use this to affectsystem integrity. (CVE-2016-2085) It was discovered that the extended Berkeley Packet Filter [ more… ]