漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
A use-after-free condition in the TTY implementation in the Linux kernel.
It was discovered that the Video For Linux Two (v4l2) implementation in the Linux kernel did not properly handle multiple planes when processing a VIDIOC_DQBUF ioctl().
It was discovered that shared bind mounts in a mount namespace exponentially added entries without restriction to the Linux kernel's mount table.
It was discovered that the KVM implementation for x86/x86_64 in the Linux kernel could dereference a null pointer.
It was discovered that the IP over IEEE 1394 (FireWire) implementation in the Linux kernel contained a buffer overflow when handling fragmented packets.
It was discovered that the TCP implementation in the Linux kernel mishandles socket buffer (skb) truncation.
It was discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data.
漏洞危害
A local attacker could use this to expose sensitive information (kernel memory). (CVE-2015-8964)
A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2016-4568)
A local attacker could use this to cause a denial of service (system crash). (CVE-2016-6213)
An attacker in a guest virtual machine could use this to cause a denial of service (system crash) in the KVM host. (CVE-2016-8630)
A remote attacker could use this to possibly execute arbitrary code with administrative privileges. (CVE-2016-8633)
A local attacker could use this to cause a denial of service (system crash). (CVE-2016-8645)
A remote attacker could use this to cause a denial of service (system crash). (CVE-2016-9555)
解决方案
Refer to Ubuntu advisory USN-3161-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-lowlatency)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-powerpc64-emb)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-powerpc-smp)
USN-3161-1: 16.04 (Xenial) on src (linux-image-powerpc-e500mc)
USN-3161-1: 16.04 (Xenial) on src (linux-image-powerpc-smp)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-powerpc64-smp)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-generic-lpae)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-generic)
USN-3161-1: 16.04 (Xenial) on src (linux-image-powerpc64-smp)
USN-3161-1: 16.04 (Xenial) on src (linux-image-generic-lpae)
USN-3161-1: 16.04 (Xenial) on src (linux-image-powerpc64-emb)
USN-3161-1: 16.04 (Xenial) on src (linux-image-generic)
USN-3161-1: 16.04 (Xenial) on src (linux-image-lowlatency)
USN-3161-1: 16.04 (Xenial) on src (linux-image-4.4.0-57-powerpc-e500mc)
0day
文章评论