USN-3151-2: Linux kernel (Xenial HWE) vulnerability
The following Cloud Foundry BOSH stemcells are vulnerable:
Philip Pettersson discovered a race condition in the
af_packet implementation in the Linux kernel. A local unprivileged attacker could use this to cause a denial of service (system crash) or run arbitrary code with administrative privileges.
OSS users are strongly encouraged to follow one of the mitigations below:
Upgrade BOSH stemcells in all deployments to one of the following versions: