Twenty Year Anniversary

Ubuntu Security Notice USN-3266-2

Ubuntu Security Notice USN-3266-2
Posted Apr 25, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3266-2 - USN-3266-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.10. This update provides the corresponding updates for the Linux Hardware Enablement kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS. Alexander Popov discovered that a race condition existed in the Stream Control Transmission Protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service.

tags | advisory, denial of service, kernel, local, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2017-5986
MD5 | ca7c85f704e2818033ade1fa533fca02

Ubuntu Security Notice USN-3266-2

Change Mirror Download

==========================================================================
Ubuntu Security Notice USN-3266-2
April 25, 2017

linux-hwe vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS

Summary:

The system could be made to crash under certain conditions.

Software Description:
- linux-hwe: Linux hardware enablement (HWE) kernel

Details:

USN-3266-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.10.
This update provides the corresponding updates for the Linux Hardware
Enablement (HWE) kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS.

Alexander Popov discovered that a race condition existed in the Stream
Control Transmission Protocol (SCTP) implementation in the Linux kernel. A
local attacker could use this to cause a denial of service (system crash).

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
linux-image-4.8.0-49-generic 4.8.0-49.52~16.04.1
linux-image-4.8.0-49-generic-lpae 4.8.0-49.52~16.04.1
linux-image-4.8.0-49-lowlatency 4.8.0-49.52~16.04.1
linux-image-generic-hwe-16.04 4.8.0.49.21
linux-image-generic-lpae-hwe-16.04 4.8.0.49.21
linux-image-lowlatency-hwe-16.04 4.8.0.49.21

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References:
http://www.ubuntu.com/usn/usn-3266-2
http://www.ubuntu.com/usn/usn-3266-1
CVE-2017-5986

Package Information:
https://launchpad.net/ubuntu/+source/linux-hwe/4.8.0-49.52~16.04.1


--BOmey7/79ja+7F5w

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=q7em
-----END PGP SIGNATURE-----

--BOmey7/79ja+7F5w--


Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    1 Files
  • 16
    Jul 16th
    21 Files
  • 17
    Jul 17th
    15 Files
  • 18
    Jul 18th
    15 Files
  • 19
    Jul 19th
    3 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close