
USN-3292-2: Linux kernel (HWE) vulnerability
USN-3292-2: Linux kernel (HWE) vulnerability Ubuntu Security Notice USN-3292-2 16th May, 2017 linux-hwe vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary The system could be made to crash or run programs as an administrator. Software description linux-hwe – Linux hardware enablement (HWE) kernel Details USN-3292-1 fixed a vulnerability in the Linux kernel for Ubuntu 16.10.This update provides the corresponding updates for the Linux HardwareEnablement (HWE) kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS. Jason Donenfeld discovered a heap overflow in the MACsec module in theLinux kernel. An attacker could use this to cause a denial of service(system crash) or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: linux-image-4.8.0-52-lowlatency 4.8.0-52.55~16.04.1 linux-image-generic-hwe-16.04 4.8.0.52.23 linux-image-4.8.0-52-generic-lpae 4.8.0-52.55~16.04.1 linux-image-lowlatency-hwe-16.04 4.8.0.52.23 linux-image-4.8.0-52-generic 4.8.0-52.55~16.04.1 [ more… ]