Lucene search

UbuntuUSN-3371-1

HistoryJul 28, 2017 - 12:00 a.m.

Linux kernel (HWE) kernel vulnerabilities

2017-07-2800:00:00

ubuntu.com

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

5.8 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

22.6%

JSON

Releases

Ubuntu 16.04 ESM

Packages

linux-hwe - Linux hardware enablement (HWE) kernel

Details

It was discovered that the Linux kernel did not properly initialize a Wake-
on-Lan data structure. A local attacker could use this to expose sensitive
information (kernel memory). (CVE-2014-9900)

Alexander Potapenko discovered a race condition in the Advanced Linux Sound
Architecture (ALSA) subsystem in the Linux kernel. A local attacker could
use this to expose sensitive information (kernel memory).
(CVE-2017-1000380)

Li Qiang discovered that the DRM driver for VMware Virtual GPUs in the
Linux kernel did not properly validate some ioctl arguments. A local
attacker could use this to cause a denial of service (system crash).
(CVE-2017-7346)

Murray McAllister discovered that the DRM driver for VMware Virtual GPUs in
the Linux kernel did not properly initialize memory. A local attacker could
use this to expose sensitive information (kernel memory). (CVE-2017-9605)

OSVersionArchitecturePackageVersionFilename
Ubuntu16.04noarchlinux-image-4.10.0-28-generic< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchblock-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchcrypto-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfat-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfb-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfirewire-core-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfloppy-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfs-core-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchfs-secondary-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN
Ubuntu16.04noarchinput-modules-4.10.0-28-generic-di< 4.10.0-28.32~16.04.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	16.04	noarch	linux-image-4.10.0-28-generic	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	block-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	crypto-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	fat-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	fb-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	firewire-core-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	floppy-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	fs-core-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	fs-secondary-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN
Ubuntu	16.04	noarch	input-modules-4.10.0-28-generic-di	< 4.10.0-28.32~16.04.2	UNKNOWN