Ubuntu Security Notice USN-2824-1

Ubuntu Security Notice USN-2824-1: Posted Dec 2, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2824-1 - Dmitry Vyukov discovered that the Linux kernel's keyring handler attempted to garbage collect incompletely instantiated keys. A local unprivileged attacker could use this to cause a denial of service (system crash).; tags | advisory, denial of service, kernel, local; systems | linux, ubuntu; advisories | CVE-2015-7872; SHA-256 | 7db7a7fae1c43f0a5515c9f7cba84ce7e29596eab26c0f8629bd42187783f008; Download | Favorite | View

Ubuntu Security Notice USN-2824-1

Content-Disposition: inline

==========================================================================Ubuntu Security Notice USN-2824-1
December 01, 2015

linux-lts-utopic vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 LTS

Summary:

The system could be made to crash under certain conditions.

Software Description:
- linux-lts-utopic: Linux hardware enablement kernel from Utopic

Details:

Dmitry Vyukov discovered that the Linux kernel's keyring handler attempted
to garbage collect incompletely instantiated keys. A local unprivileged
attacker could use this to cause a denial of service (system crash).

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  linux-image-3.16.0-55-generic   3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-generic-lpae  3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-lowlatency  3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-powerpc-e500mc  3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-powerpc-smp  3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-powerpc64-emb  3.16.0-55.74~14.04.1
  linux-image-3.16.0-55-powerpc64-smp  3.16.0-55.74~14.04.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References:
  http://www.ubuntu.com/usn/usn-2824-1
  CVE-2015-7872

Package Information:
  https://launchpad.net/ubuntu/+source/linux-lts-utopic/3.16.0-55.74~14.04.1

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 87 files
Gentoo 31 files
Debian 21 files
tmrswrr 10 files
Sina Kheirkhah 7 files
Rodolfo Tavares 4 files
bRpsd 4 files
Google Security Research 3 files
Jann Horn 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,078)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,350)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,266)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,658)
UNIX (9,425)
UnixWare (187)
Windows (6,666)
Other

Ubuntu Security Notice USN-2824-1

Ubuntu Security Notice USN-2824-1

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-2824-1

Share This

Ubuntu Security Notice USN-2824-1

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems