First published: Wed Sep 23 2015(Updated: )
Multiple race conditions in the Advanced Union Filesystem (aufs) aufs3-mmap.patch and aufs4-mmap.patch patches for the Linux kernel 3.x and 4.x allow local users to cause a denial of service (use-after-free and BUG) or possibly gain privileges via a (1) madvise or (2) msync system call, related to mm/madvise.c and mm/msync.c.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Linux Linux kernel | >=3.0.0<=3.19.8 | |
Linux Linux kernel | >=4.0.0<=4.20.15 | |
Canonical Ubuntu Linux | =14.04 | |
Debian Debian Linux | =8.0 | |
ubuntu/linux | <3.13.0-66.108 | 3.13.0-66.108 |
ubuntu/linux | <3.19.0-31.36 | 3.19.0-31.36 |
ubuntu/linux-lts-trusty | <3.13.0-66.108~ | 3.13.0-66.108~ |
ubuntu/linux-lts-utopic | <3.16.0-51.69~14.04.1 | 3.16.0-51.69~14.04.1 |
ubuntu/linux-lts-vivid | <3.19.0-31.36~14.04.1 | 3.19.0-31.36~14.04.1 |
debian/linux | 5.10.223-1 6.1.106-3 6.1.99-1 6.10.6-1 6.10.9-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)