Linux kernel (Xenial HWE) vulnerability

2017-03-08T00:00:00
ID USN-3220-2
Type ubuntu
Reporter Ubuntu
Modified 2017-03-08T00:00:00

Description

USN-3220-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS.

Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges.