USN-3509-4: Linux kernel (Xenial HWE) regression
USN-3509-4: Linux kernel (Xenial HWE) regression Ubuntu Security Notice USN-3509-4 15th December, 2017 linux-lts-xenial, linux-aws regression A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary USN-3509-2 introduced a regression in the Linux HWE kernel for Ubuntu 14.04 LTS. Software description linux-aws – Linux kernel for Amazon Web Services (AWS) systems linux-lts-xenial – Linux hardware enablement kernel from Xenial for Trusty Details USN-3509-2 fixed vulnerabilities in the Linux Hardware Enablementkernel for Ubuntu 14.04 LTS. Unfortunately, it also introduced aregression that prevented the Ceph network filesystem from beingused. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Mohamed Ghannam discovered that a use-after-free vulnerability existed in the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary [ more… ]