USN-3422-1: Linux kernel vulnerabilities
USN-3422-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-3422-1 18th September, 2017 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux – Linux kernel Details It was discovered that a buffer overflow existed in the Bluetooth stack ofthe Linux kernel when handling L2CAP configuration responses. A physicallyproximate attacker could use this to cause a denial of service (systemcrash). (CVE-2017-1000251) It was discovered that the asynchronous I/O (aio) subsystem of the Linuxkernel did not properly set permissions on aio memory mappings in somesituations. An attacker could use this to more easily exploit othervulnerabilities. (CVE-2016-10044) Baozeng Ding and Andrey Konovalov discovered a race condition in the L2TPv3IP Encapsulation implementation in the Linux kernel. A local attacker coulduse this to cause a denial of [ more… ]