What is the severity of USN-2684-1?

USN-2684-1 has been classified as a denial of service vulnerability that can cause system crashes.

How do I fix USN-2684-1?

To fix USN-2684-1, upgrade your Linux kernel to version 3.19.0-23.24 or later.

Who is affected by USN-2684-1?

USN-2684-1 affects unprivileged local users running Ubuntu Linux 15.04 with specific kernel packages.

What is the impact of exploiting USN-2684-1?

Exploiting USN-2684-1 can result in a denial of service, leading to a system crash.

When was USN-2684-1 reported?

USN-2684-1 was reported on October 20, 2015, in relation to a flaw discovered in the kvm subsystem.

Vulnerability/
USN-2684-1

23/7/2015

USN-2684-1: Linux kernel vulnerabilities

First published: Thu Jul 23 2015(Updated: )

A flaw was discovered in the kvm (kernel virtual machine) subsystem's kvm_apic_has_events function. A unprivileged local user could exploit this flaw to cause a denial of service (system crash). (CVE-2015-4692) Daniel Borkmann reported a kernel crash in the Linux kernel's BPF filter JIT optimization. A local attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2015-4700) A flaw was discovered in how the Linux kernel handles invalid UDP checksums. A remote attacker could exploit this flaw to cause a denial of service using a flood of UDP packets with invalid checksums. (CVE-2015-5364) A flaw was discovered in how the Linux kernel handles invalid UDP checksums. A remote attacker can cause a denial of service against applications that use epoll by injecting a single packet with an invalid checksum. (CVE-2015-5366)

Affected Software	Affected Version	How to fix
All of
ubuntu/linux-image-3.19.0-23-powerpc64-smp	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-generic	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-powerpc-smp	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-powerpc64-emb	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-generic-lpae	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-lowlatency	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04
All of
ubuntu/linux-image-3.19.0-23-powerpc-e500mc	<3.19.0-23.24	3.19.0-23.24
Ubuntu gir1.2-packagekitglib-1.0	=15.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

Frequently Asked Questions

What is the severity of USN-2684-1?
USN-2684-1 has been classified as a denial of service vulnerability that can cause system crashes.
How do I fix USN-2684-1?
To fix USN-2684-1, upgrade your Linux kernel to version 3.19.0-23.24 or later.
Who is affected by USN-2684-1?
USN-2684-1 affects unprivileged local users running Ubuntu Linux 15.04 with specific kernel packages.
What is the impact of exploiting USN-2684-1?
Exploiting USN-2684-1 can result in a denial of service, leading to a system crash.
When was USN-2684-1 reported?
USN-2684-1 was reported on October 20, 2015, in relation to a flaw discovered in the kvm subsystem.

agent/severity
agent/type
agent/last-modified-date
agent/first-publish-date
agent/references
agent/title
agent/description
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/usn
source/Ubuntu
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu gir1.2-packagekitglib-1.0
version/ubuntu gir1.2-packagekitglib-1.0/15.04