
USN-3361-1: Linux kernel (HWE) vulnerabilities
USN-3361-1: Linux kernel (HWE) vulnerabilities Ubuntu Security Notice USN-3361-1 21st July, 2017 linux-hwe vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux-hwe – Linux hardware enablement (HWE) kernel linux-meta-hwe Details USN-3358-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04.This update provides the corresponding updates for the Linux HardwareEnablement (HWE) kernel from Ubuntu 17.04 for Ubuntu 16.04 LTS. Pleasenote that this update changes the Linux HWE kernel to the 4.10 basedkernel from Ubuntu 17.04, superseding the 4.8 based HWE kernel fromUbuntu 16.10. Ben Harris discovered that the Linux kernel would strip extended privilegeattributes of files when performing a failed unprivileged system call. Alocal attacker could use this to cause a denial of service. (CVE-2015-1350) Ralf Spenneberg discovered that the ext4 implementation [ more… ]