First published: Thu Nov 05 2015(Updated: )
Dmitry Vyukov discovered that the Linux kernel did not properly initialize IPC object state in certain situations. A local attacker could use this to escalate their privileges, expose confidential information, or cause a denial of service (system crash). (CVE-2015-7613) It was discovered that the Linux kernel did not check if a new IPv6 MTU set by a user space application was valid. A remote attacker could forge a route advertisement with an invalid MTU that a user space daemon like NetworkManager would honor and apply to the kernel, causing a denial of service. (CVE-2015-0272) It was discovered that in certain situations, a directory could be renamed outside of a bind mounted location. An attacker could use this to escape bind mount containment and gain access to sensitive information. (CVE-2015-2925) Moein Ghasemzadeh discovered that the USB WhiteHEAT serial driver contained hardcoded attributes about the USB devices. An attacker could construct a fake WhiteHEAT USB device that, when inserted, causes a denial of service (system crash). (CVE-2015-5257)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/linux-image-3.2.0-1473-omap4 | <3.2.0-1473.95 | 3.2.0-1473.95 |
=12.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Contains the following vulnerabilities)
The severity of USN-2796-1 is high.
A local attacker could exploit CVE-2015-7613 by using uninitialized IPC object state to escalate their privileges, expose confidential information, or cause a denial of service.
The vulnerability affects Ubuntu version 12.04.
The recommended remedy for this vulnerability is to update the linux-image-3.2.0-1473-omap4 package to version 3.2.0-1473.95.
More information about USN-2796-1 can be found at the following reference links: [CVE-2015-0272](https://ubuntu.com/security/CVE-2015-0272), [CVE-2015-2925](https://ubuntu.com/security/CVE-2015-2925), [CVE-2015-5257](https://ubuntu.com/security/CVE-2015-5257).