USN-3266-2: Linux kernel (HWE) vulnerability<\/p>\n
24th April, 2017<\/em><\/p>\n A security issue affects these releases of Ubuntu and its The system could be made to crash under certain conditions.\n<\/p>\n USN-3266-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.10. Alexander Popov discovered that a race condition existed in the Stream The problem can be corrected by updating your system to the following To update your system, please follow these instructions: After a standard system update you need to reboot your computer to make ATTENTION: Due to an unavoidable ABI change the kernel updates have CVE-2017-5986<\/a><\/p>\n Source: USN-3266-2: Linux kernel (HWE) vulnerability<\/a><\/p>\n","protected":false},"excerpt":{"rendered":" USN-3266-2: Linux kernel (HWE) vulnerability Ubuntu Security Notice USN-3266-2 24th April, 2017 linux-hwe vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary The system could be made to crash under certain conditions. Software description linux-hwe – Linux hardware enablement (HWE) kernel Details USN-3266-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.10.This update provides the corresponding updates for the Linux HardwareEnablement (HWE) kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS. Alexander Popov discovered that a race condition existed in the StreamControl Transmission Protocol (SCTP) implementation in the Linux kernel. Alocal attacker could use this to cause a denial of service (system crash). Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: linux-image-4.8.0-49-generic 4.8.0-49.52~16.04.1 linux-image-lowlatency-hwe-16.04 4.8.0.49.21 linux-image-generic-hwe-16.04 4.8.0.49.21 linux-image-4.8.0-49-lowlatency 4.8.0-49.52~16.04.1 linux-image-4.8.0-49-generic-lpae 4.8.0-49.52~16.04.1 linux-image-generic-lpae-hwe-16.04 4.8.0.49.21 [ more… ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-15757","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/15757","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=15757"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/15757\/revisions"}],"predecessor-version":[{"id":15758,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/15757\/revisions\/15758"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=15757"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=15757"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=15757"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}linux-hwe vulnerability<\/h3>\n
\n derivatives:<\/p>\n\n
Summary<\/h3>\n
Software description<\/h3>\n
\n
\n – Linux hardware enablement (HWE) kernel<\/p>\n<\/li>\n<\/ul>\nDetails<\/h3>\n
This update provides the corresponding updates for the Linux Hardware
Enablement (HWE) kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS.<\/p>\n
Control Transmission Protocol (SCTP) implementation in the Linux kernel. A
local attacker could use this to cause a denial of service (system crash).<\/p>\nUpdate instructions<\/h3>\n
\npackage version:<\/p>\n\n
\n
\n 4.8.0-49.52~16.04.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 4.8.0.49.21<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 4.8.0.49.21<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 4.8.0-49.52~16.04.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 4.8.0-49.52~16.04.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 4.8.0.49.21<\/a>
\n <\/span>\n <\/dd>\n<\/dl>\n
\nhttps:\/\/wiki.ubuntu.com\/Security\/Upgrades<\/a>.\n<\/p>\n
all the necessary changes.<\/p>\n
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.<\/p>\nReferences<\/h3>\n