Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-3265-2
HistoryApr 25, 2017 - 12:00 a.m.

Linux kernel (Xenial HWE) vulnerabilities

2017-04-2500:00:00
ubuntu.com
57

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.042 Low

EPSS

Percentile

92.1%

JSON

Releases

  • Ubuntu 14.04 ESM

Packages

  • linux-lts-xenial - Linux hardware enablement kernel from Xenial for Trusty

Details

USN-3265-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu
14.04 LTS.

It was discovered that a use-after-free flaw existed in the filesystem
encryption subsystem in the Linux kernel. A local attacker could use this
to cause a denial of service (system crash). (CVE-2017-7374)

Andrey Konovalov discovered an out-of-bounds access in the IPv6 Generic
Routing Encapsulation (GRE) tunneling implementation in the Linux kernel.
An attacker could use this to possibly expose sensitive information.
(CVE-2017-5897)

Andrey Konovalov discovered that the IPv4 implementation in the Linux
kernel did not properly handle invalid IP options in some situations. An
attacker could use this to cause a denial of service or possibly execute
arbitrary code. (CVE-2017-5970)

Gareth Evans discovered that the shm IPC subsystem in the Linux kernel did
not properly restrict mapping page zero. A local privileged attacker could
use this to execute arbitrary code. (CVE-2017-5669)

Alexander Popov discovered that a race condition existed in the Stream
Control Transmission Protocol (SCTP) implementation in the Linux kernel. A
local attacker could use this to cause a denial of service (system crash).
(CVE-2017-5986)

Dmitry Vyukov discovered that the Linux kernel did not properly handle TCP
packets with the URG flag. A remote attacker could use this to cause a
denial of service. (CVE-2017-6214)

Andrey Konovalov discovered that the LLC subsytem in the Linux kernel did
not properly set up a destructor in certain situations. A local attacker
could use this to cause a denial of service (system crash). (CVE-2017-6345)

It was discovered that a race condition existed in the AF_PACKET handling
code in the Linux kernel. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2017-6346)

Andrey Konovalov discovered that the IP layer in the Linux kernel made
improper assumptions about internal data layout when performing checksums.
A local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2017-6347)

Dmitry Vyukov discovered race conditions in the Infrared (IrDA) subsystem
in the Linux kernel. A local attacker could use this to cause a denial of
service (deadlock). (CVE-2017-6348)

OSVersionArchitecturePackageVersionFilename
Ubuntu14.04noarchlinux-image-4.4.0-75-generic< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchblock-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchcrypto-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfat-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfb-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfirewire-core-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfloppy-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfs-core-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchfs-secondary-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Ubuntu14.04noarchinput-modules-4.4.0-75-generic-di< 4.4.0-75.96~14.04.1UNKNOWN
Rows per page:
1-10 of 551

Related

nessus 47
openvas 24
ubuntu 5
cloudfoundry 1
f5 5
osv 2
debian 3
suse 32
mageia 6
amazon 3
fedora 7
oraclelinux 2
symantec 1
redhatcve 10
prion 10
cve 10
ubuntucve 9
debiancve 10
ibm 5
veracode 3
virtuozzo 2
centos 1
redhat 1
nessus
nessus
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3265-1)
2017-04-25 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3265-2)
2017-04-25 00:00:00
Debian DSA-3804-1 : linux - security update
2017-03-09 00:00:00
openvas
openvas
Ubuntu Update for linux USN-3265-1
2017-04-25 00:00:00
Ubuntu Update for linux-lts-xenial USN-3265-2
2017-04-25 00:00:00
Debian Security Advisory DSA 3804-1 (linux - security update)
2017-03-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2017-04-25 00:00:00
Linux kernel (Trusty HWE) vulnerability
2017-04-24 00:00:00
Linux kernel (HWE) vulnerability
2017-04-25 00:00:00
cloudfoundry
cloudfoundry
USN-3265-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2017-05-01 00:00:00
f5
f5
K31209433 : Linux kernel vulnerabilities CVE-2017-6345, CVE-2017-6347, and CVE-2017-6348
2017-04-13 00:00:00
K61968355 : Linux kernel vulnerability CVE-2017-7374
2017-05-01 00:00:00
K60104355 : Linux kernel vulnerability CVE-2017-5970
2017-04-18 00:00:00
osv
osv
linux - security update
2017-03-08 00:00:00
linux - security update
2017-03-08 00:00:00
debian
debian
[SECURITY] [DLA 849-1] linux security update
2017-03-09 12:06:12
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
suse
suse
Security update for the Linux Kernel (important)
2017-02-22 21:15:53
Security update for the Linux Kernel (important)
2017-02-22 21:10:07
Security update for the Linux Kernel (important)
2017-04-01 15:07:45
mageia
mageia
Updated kernel-linus packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel-tmb packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel packages fixes security vulnerabilities
2017-03-25 23:15:34
amazon
amazon
Important: kernel
2017-03-06 14:00:00
Medium: kernel
2017-04-06 21:16:00
Important: kernel
2017-03-29 17:59:00
fedora
fedora
[SECURITY] Fedora 25 Update: kernel-4.9.9-200.fc25
2017-02-14 15:52:06
[SECURITY] Fedora 25 Update: kernel-4.9.13-201.fc25
2017-03-11 12:22:11
[SECURITY] Fedora 24 Update: kernel-4.9.13-101.fc24
2017-03-11 11:52:58
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2017-04-13 00:00:00
kernel security and bug fix update
2017-05-30 00:00:00
symantec
symantec
SA148: Linux Kernel Vulnerabilities Feb-Apr 2017
2017-05-09 08:00:00
redhatcve
redhatcve
CVE-2017-7374
2017-04-03 10:48:45
CVE-2017-5897
2017-02-07 09:22:23
CVE-2017-6345
2017-03-02 16:48:19
prion
prion
Out-of-bounds
2017-03-23 16:59:00
Null pointer dereference
2017-03-31 20:59:00
Code injection
2017-02-23 17:59:00
cve
cve
CVE-2017-5897
2017-03-23 16:59:00
CVE-2017-7374
2017-03-31 20:59:00
CVE-2017-6214
2017-02-23 17:59:00
ubuntucve
ubuntucve
CVE-2017-5897
2017-03-23 00:00:00
CVE-2017-7374
2017-03-31 00:00:00
CVE-2017-5669
2017-02-24 00:00:00
debiancve
debiancve
CVE-2017-7374
2017-03-31 20:59:00
CVE-2017-6345
2017-03-01 20:59:00
CVE-2017-5897
2017-03-23 16:59:00
ibm
ibm
Security Bulletin: The Linux Kernel as used in IBM QRadar SIEM is vulnerable to denial service. (CVE-2017-6214)
2018-06-16 22:04:36
Security Bulletin: IBM Security Access Manager Appliance is affected by a kernel vulnerability (CVE-2017-5970)
2018-06-22 02:26:47
Security Bulletin: Vulnerability in Linux Kernel affects IBM RackSwitch Products (CVE-2017-6214)
2019-01-31 02:25:02
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:17:01
Denial Of Service (DOS)
2019-05-02 06:36:13
Denial Of Service (DoS)
2019-05-02 06:11:52
virtuozzo
virtuozzo
Kernel security update: CVE-2017-5970 and other; Virtuozzo ReadyKernel patch 20.0 for Virtuozzo 7.0.x
2017-04-28 00:00:00
Important kernel security update: Virtuozzo ReadyKernel patch 13.0 for kernels 3.10.0-327.18.2.vz7.15.2 (Virtuozzo 7.0.0), 3.10.0-327.36.1.vz7.18.7 (Virtuozzo 7.0.1), and 3.10.0-327.36.1.vz7.20.18 (Virtuozzo 7.0.3)
2017-03-02 00:00:00
centos
centos
kernel, perf, python security update
2017-05-31 14:08:43
redhat
redhat
(RHSA-2017:1372) Moderate: kernel security and bug fix update
2017-05-30 14:49:29

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.042 Low

EPSS

Percentile

92.1%

JSON
Related for USN-3265-2
nessus47openvas24ubuntu5cloudfoundry1f55osv2debian3suse32mageia6amazon3fedora7oraclelinux2symantec1redhatcve10prion10cve10ubuntucve9debiancve10ibm5veracode3virtuozzo2centos1redhat1