USN-4904-1: Linux kernel vulnerabilities<\/p>\n
Ben Harris discovered that the Linux kernel would strip extended privilege
\nattributes of files when performing a failed unprivileged system call. A
\nlocal attacker could use this to cause a denial of service. (CVE-2015-1350)<\/p>\n
Andrey Konovalov discovered that the video4linux driver for Hauppauge HD
\nPVR USB devices in the Linux kernel did not properly handle some error
\nconditions. A physically proximate attacker could use this to cause a
\ndenial of service (system crash) or possibly execute arbitrary code.
\n(CVE-2017-16644)<\/p>\n
It was discovered that the timer stats implementation in the Linux kernel
\nallowed the discovery of a real PID value while inside a PID namespace. A
\nlocal attacker could use this to expose sensitive information.
\n(CVE-2017-5967)<\/p>\n
Wen Xu discovered that the xfs file system implementation in the Linux
\nkernel did not properly validate the number of extents in an inode. An
\nattacker could use this to construct a malicious xfs image that, when
\nmounted, could cause a denial of service (system crash). (CVE-2018-13095)<\/p>\n
It was discovered that the Fujitsu ES network device driver for the Linux
\nkernel did not properly check for errors in some situations, leading to a
\nNULL pointer dereference. A local attacker could use this to cause a denial
\nof service. (CVE-2019-16231)<\/p>\n
It was discovered that the Marvell 8xxx Libertas WLAN device driver in the
\nLinux kernel did not properly check for errors in certain situations,
\nleading to a NULL pointer dereference. A local attacker could possibly use
\nthis to cause a denial of service. (CVE-2019-16232)<\/p>\n
It was discovered that the ADIS16400 IIO IMU Driver for the Linux kernel
\ndid not properly deallocate memory in certain error conditions. A local
\nattacker could use this to cause a denial of service (memory exhaustion).
\n(CVE-2019-19061)<\/p>\n
It was discovered that a race condition existed in the floppy device driver
\nin the Linux kernel. An attacker with access to the floppy device could use
\nthis to cause a denial of service (system crash) or possibly execute
\narbitrary code. (CVE-2021-20261)<\/p>\n
Olivier Benjamin, Norbert Manthey, Martin Mazein, and Jan H. Sch\u00f6nherr
\ndiscovered that the Xen paravirtualization bckend in the Linux kernel did
\nnot properly propagate errors to frontend drivers in some situations. An
\nattacker in a guest VM could possibly use this to cause a denial of service
\n(host domain crash). (CVE-2021-26930)<\/p>\n
Jan Beulich discovered that multiple Xen backends in the Linux kernel did
\nnot properly handle certain error conditions under paravirtualization. An
\nattacker in a guest VM could possibly use this to cause a denial of service
\n(host domain crash). (CVE-2021-26931)<\/p>\n
Jan Beulich discovered that the Xen netback backend in the Linux kernel did USN-4904-1: Linux kernel vulnerabilities Ben Harris discovered that the Linux kernel would strip extended privilege attributes of files when performing a failed unprivileged system call. A local attacker could use this to cause a denial of service. (CVE-2015-1350) Andrey Konovalov discovered that the video4linux driver for Hauppauge HD PVR USB devices in the Linux kernel did not properly handle some error conditions. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-16644) It was discovered that the timer stats implementation in the Linux kernel allowed the discovery of a real PID value while inside a PID namespace. A local attacker could use this to expose sensitive information. (CVE-2017-5967) Wen Xu discovered that the xfs file system implementation in the Linux kernel did not properly validate the number of extents [ more… ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-41220","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/41220","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=41220"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/41220\/revisions"}],"predecessor-version":[{"id":41221,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/41220\/revisions\/41221"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=41220"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=41220"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=41220"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nnot properly handle certain error conditions under paravirtualization. An
\nattacker in a guest VM could possibly use this to cause a denial of service
\n(host domain crash). (CVE-2021-28038)
\nSource: USN-4904-1: Linux kernel vulnerabilities<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"