Linux kernel vulnerabilities

2017-02-03T00:00:00
ID USN-3187-1
Type ubuntu
Reporter Ubuntu
Modified 2017-02-03T00:00:00

Description

Andrey Konovalov discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data. A remote attacker could use this to cause a denial of service (system crash). (CVE-2016-9555)

It was discovered that multiple memory leaks existed in the XFS implementation in the Linux kernel. A local attacker could use this to cause a denial of service (memory consumption). (CVE-2016-9685)