[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-3581-1 -- linux-image

ID: oval:org.secpod.oval:def:703992Date: (C)2018-02-23   (M)2024-02-19
Class: PATCHFamily: unix




linux: Linux kernel Details: Mohamed Ghannam discovered that the IPv4 raw socket implementation in the Linux kernel contained a race condition leading to uninitialized pointer usage. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. ChunYu Wang discovered that a use-after-free vulnerability existed in the SCTP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code, Mohamed Ghannam discovered a use-after-free vulnerability in the DCCP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. USN-3541-1 mitigated CVE-2017-5715 for the amd64 architecture in Ubuntu 17.10. This update provides the compiler-based retpoline kernel mitigation for the amd64 and i386 architectures. Original advisory Several security issues were fixed in the Linux kernel.

Platform:
Ubuntu 17.10
Product:
linux-image
linux-image-generic-4.13
linux-image-lowlatency-4.13
Reference:
USN-3581-1
CVE-2017-17712
CVE-2017-15115
CVE-2017-8824
CVE-2017-5715
CVE    4
CVE-2017-15115
CVE-2017-17712
CVE-2017-8824
CVE-2017-5715
...
CPE    4
cpe:/a:linux:linux_image_metapackage
cpe:/a:linux:linux_image_lowlatency:4.13
cpe:/a:linux:linux_image_generic:4.13
cpe:/o:ubuntu:ubuntu_linux:17.10
...

© SecPod Technologies