Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-3422-1
HistorySep 18, 2017 - 12:00 a.m.

Linux kernel vulnerabilities

2017-09-1800:00:00
ubuntu.com
81

8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

7.7 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:C/I:C/A:C

0.042 Low

EPSS

Percentile

92.1%

JSON

Releases

  • Ubuntu 14.04 ESM

Packages

  • linux - Linux kernel

Details

It was discovered that a buffer overflow existed in the Bluetooth stack of
the Linux kernel when handling L2CAP configuration responses. A physically
proximate attacker could use this to cause a denial of service (system
crash). (CVE-2017-1000251)

It was discovered that the asynchronous I/O (aio) subsystem of the Linux
kernel did not properly set permissions on aio memory mappings in some
situations. An attacker could use this to more easily exploit other
vulnerabilities. (CVE-2016-10044)

Baozeng Ding and Andrey Konovalov discovered a race condition in the L2TPv3
IP Encapsulation implementation in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2016-10200)

Andreas Gruenbacher and Jan Kara discovered that the filesystem
implementation in the Linux kernel did not clear the setgid bit during a
setxattr call. A local attacker could use this to possibly elevate group
privileges. (CVE-2016-7097)

Sergej Schumilo, Ralf Spenneberg, and Hendrik Schwartke discovered that the
key management subsystem in the Linux kernel did not properly allocate
memory in some situations. A local attacker could use this to cause a
denial of service (system crash). (CVE-2016-8650)

Vlad Tsyrklevich discovered an integer overflow vulnerability in the VFIO
PCI driver for the Linux kernel. A local attacker with access to a vfio PCI
device file could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2016-9083, CVE-2016-9084)

It was discovered that an information leak existed in __get_user_asm_ex()
in the Linux kernel. A local attacker could use this to expose sensitive
information. (CVE-2016-9178)

CAI Qian discovered that the sysctl implementation in the Linux kernel did
not properly perform reference counting in some situations. An unprivileged
attacker could use this to cause a denial of service (system hang).
(CVE-2016-9191)

It was discovered that the keyring implementation in the Linux kernel in
some situations did not prevent special internal keyrings from being joined
by userspace keyrings. A privileged local attacker could use this to bypass
module verification. (CVE-2016-9604)

It was discovered that an integer overflow existed in the trace subsystem
of the Linux kernel. A local privileged attacker could use this to cause a
denial of service (system crash). (CVE-2016-9754)

Andrey Konovalov discovered that the IPv4 implementation in the Linux
kernel did not properly handle invalid IP options in some situations. An
attacker could use this to cause a denial of service or possibly execute
arbitrary code. (CVE-2017-5970)

Dmitry Vyukov discovered that the Linux kernel did not properly handle TCP
packets with the URG flag. A remote attacker could use this to cause a
denial of service. (CVE-2017-6214)

It was discovered that a race condition existed in the AF_PACKET handling
code in the Linux kernel. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2017-6346)

It was discovered that the keyring implementation in the Linux kernel did
not properly restrict searches for dead keys. A local attacker could use
this to cause a denial of service (system crash). (CVE-2017-6951)

Dmitry Vyukov discovered that the generic SCSI (sg) subsystem in the Linux
kernel contained a stack-based buffer overflow. A local attacker with
access to an sg device could use this to cause a denial of service (system
crash) or possibly execute arbitrary code. (CVE-2017-7187)

Eric Biggers discovered a memory leak in the keyring implementation in the
Linux kernel. A local attacker could use this to cause a denial of service
(memory consumption). (CVE-2017-7472)

It was discovered that a buffer overflow existed in the Broadcom FullMAC
WLAN driver in the Linux kernel. A local attacker could use this to cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2017-7541)

OSVersionArchitecturePackageVersionFilename
Ubuntu14.04noarchlinux-image-3.13.0-132-generic< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchblock-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchcrypto-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfat-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfb-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfirewire-core-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfloppy-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfs-core-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchfs-secondary-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Ubuntu14.04noarchinput-modules-3.13.0-132-generic-di< 3.13.0-132.181UNKNOWN
Rows per page:
1-10 of 591

Related

ubuntu 3
openvas 15
nessus 49
fedora 5
avleonov 1
oraclelinux 8
mageia 3
redhat 3
amazon 2
centos 1
photon 1
osv 2
cve 13
redhatcve 11
prion 13
debiancve 12
ubuntucve 11
suse 19
debian 1
veracode 9
zdt 1
f5 4
ibm 4
android 1
exploitpack 2
virtuozzo 3
packetstorm 1
archlinux 1
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2017-09-18 00:00:00
Linux kernel vulnerabilities
2017-09-18 00:00:00
Linux kernel (HWE) vulnerabilities
2017-09-18 00:00:00
openvas
openvas
Ubuntu Update for linux USN-3422-1
2017-09-19 00:00:00
Fedora Update for kernel FEDORA-2016-96d276367e
2016-12-02 00:00:00
Ubuntu Update for linux USN-3419-1
2017-09-19 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3422-1)
2017-09-19 00:00:00
Fedora 24 : kernel (2016-96d276367e)
2016-11-08 00:00:00
Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3419-1) (BlueBorne)
2017-09-19 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: kernel-4.8.6-201.fc24
2016-11-07 23:34:12
[SECURITY] Fedora 23 Update: kernel-4.8.8-100.fc23
2016-11-24 08:29:52
[SECURITY] Fedora 24 Update: kernel-4.8.11-200.fc24
2016-12-06 10:30:09
avleonov
avleonov
Vulners NASL Plugin Feeds for OpenVAS 9
2017-10-04 17:57:22
oraclelinux
oraclelinux
kernel security and bug fix update
2017-10-06 00:00:00
kernel security, bug fix, and enhancement update
2017-03-02 00:00:00
kernel security, bug fix, and enhancement update
2017-03-03 00:00:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities
2017-05-10 23:47:44
Updated kernel-tmb packages fixes security vulnerabilities
2017-05-26 09:54:58
Updated kernel-linus packages fixes security vulnerabilities
2017-05-26 09:54:58
redhat
redhat
(RHSA-2017:0387) Important: kernel-rt security and bug fix update
2017-03-02 15:22:34
(RHSA-2017:0386) Important: kernel security, bug fix, and enhancement update
2017-03-02 15:22:31
(RHSA-2017:2707) Important: kernel security and bug fix update
2017-09-13 13:15:37
amazon
amazon
Important: kernel
2016-12-06 23:44:00
Important: kernel
2017-03-06 14:00:00
centos
centos
kernel, perf, python security update
2017-03-06 15:04:15
photon
photon
Important Photon OS Security Update - PHSA-2017-0010
2017-02-02 00:00:00
osv
osv
linux - security update
2017-04-28 00:00:00
CVE-2017-1000251
2017-09-12 17:29:00
cve
cve
CVE-2016-10044
2017-02-07 07:59:00
CVE-2016-9178
2016-11-28 03:59:00
CVE-2016-9084
2016-11-28 03:59:00
redhatcve
redhatcve
CVE-2016-9178
2016-11-04 11:17:24
CVE-2016-9754
2017-01-05 11:17:26
CVE-2016-10200
2019-10-19 12:27:41
prion
prion
Design/Logic Flaw
2017-01-05 11:59:00
Information disclosure
2017-02-07 07:59:00
Design/Logic Flaw
2016-11-28 03:59:00
debiancve
debiancve
CVE-2016-9754
2017-01-05 11:59:00
CVE-2016-10044
2017-02-07 07:59:00
CVE-2016-9178
2016-11-28 03:59:00
ubuntucve
ubuntucve
CVE-2016-9754
2017-01-05 00:00:00
CVE-2016-10044
2017-02-07 00:00:00
CVE-2016-9084
2016-11-27 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2017-04-01 15:11:17
Security update for the Linux Kernel (important)
2017-05-05 15:11:30
Security update for the Linux Kernel (important)
2017-05-19 18:10:39
debian
debian
[SECURITY] [DLA 922-1] linux security update
2017-04-28 12:39:18
veracode
veracode
Integer Overflow
2019-05-02 06:32:55
Use-After-Free
2019-05-02 06:36:11
Memory Corruption
2019-05-02 06:32:55
zdt
zdt
Linux Kernel < 4.10.13 - keyctl_set_reqkey_keyring Local Denial of Service Exploit
2017-06-08 00:00:00
f5
f5
K68852819 : Linux kernel vulnerability CVE-2016-10200
2017-05-02 00:00:00
K31603170 : Linux kernel vulnerability CVE-2016-7097
2017-06-22 00:00:00
K60104355 : Linux kernel vulnerability CVE-2017-5970
2017-04-18 00:00:00
ibm
ibm
Security Bulletin: IBM Security Access Manager appliances are affected by kernel vulnerabilities
2018-06-16 22:03:36
Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM
2018-06-18 01:34:53
Security Bulletin: The Linux Kernel as used in IBM QRadar SIEM is vulnerable to denial service. (CVE-2017-6214)
2018-06-16 22:04:36
android
android
CVE-2016-10200
2017-03-01 00:00:00
exploitpack
exploitpack
Linux Kernel 4.10.13 - keyctl_set_reqkey_keyring Local Denial of Service
2017-06-07 00:00:00
Linux Kernel 4.13.1 - BlueTooth Buffer Overflow (PoC)
2017-09-21 00:00:00
virtuozzo
virtuozzo
Kernel security update: CVE-2017-7472; new kernel 2.6.32-042stab123.2 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2017-04-27 00:00:00
Kernel security update: CVE-2017-7472; new kernel 2.6.32-042stab123.2, Virtuozzo 6.0 Update 12 Hotfix 8 (6.0.12-3765)
2017-04-27 00:00:00
Kernel security update: CVE-2017-5970 and other; Virtuozzo ReadyKernel patch 20.0 for Virtuozzo 7.0.x
2017-04-28 00:00:00
packetstorm
packetstorm
Linux Kernel keyctl_set_reqkey_keyring Denial Of Service
2017-06-08 00:00:00
archlinux
archlinux
[ASA-201709-9] linux: arbitrary code execution
2017-09-15 00:00:00

8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

7.7 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:S/C:C/I:C/A:C

0.042 Low

EPSS

Percentile

92.1%

JSON
Related for USN-3422-1
ubuntu3openvas15nessus49fedora5avleonov1oraclelinux8mageia3redhat3amazon2centos1photon1osv2cve13redhatcve11prion13debiancve12ubuntucve11suse19debian1veracode9zdt1f54ibm4android1exploitpack2virtuozzo3packetstorm1archlinux1