USN-3207-2: Linux kernel (Trusty HWE) vulnerabilities
First published: Wed Feb 22 2017(Updated: )
USN-3207-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. It was discovered that a use-after-free vulnerability existed in the block device layer of the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2016-7910) Dmitry Vyukov discovered a use-after-free vulnerability in the sys_ioprio_get() function in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2016-7911) Andrey Konovalov discovered a use-after-free vulnerability in the DCCP implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2017-6074)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-generic-lpae-lts-trusty | <3.13.0.110.101 | 3.13.0.110.101 |
| Ubuntu gir1.2-packagekitglib-1.0 | =12.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-110-generic | <3.13.0-110.157~precise1 | 3.13.0-110.157~precise1 |
| Ubuntu gir1.2-packagekitglib-1.0 | =12.04 | |
| All of | ||
| ubuntu/linux-image-generic-lts-trusty | <3.13.0.110.101 | 3.13.0.110.101 |
| Ubuntu gir1.2-packagekitglib-1.0 | =12.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-110-generic-lpae | <3.13.0-110.157~precise1 | 3.13.0-110.157~precise1 |
| Ubuntu gir1.2-packagekitglib-1.0 | =12.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2016-7910
- https://ubuntu.com/security/CVE-2016-7911
- https://ubuntu.com/security/CVE-2017-6074
- https://ubuntu.com/security/notices/USN-3207-1
- https://ubuntu.com/security/notices/USN-3206-1
- https://ubuntu.com/security/notices/USN-3208-1
- https://ubuntu.com/security/notices/USN-3208-2
- https://ubuntu.com/security/notices/USN-3209-1
- https://launchpad.net/ubuntu/+source/linux-lts-trusty/3.13.0-110.157~precise1
- https://ubuntu.com/security/notices/USN-3207-2 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What vulnerabilities does USN-3207-2 fix?
USN-3207-2 fixes vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS.
Which version of Ubuntu is affected by USN-3207-2?
USN-3207-2 affects Ubuntu 12.04 LTS.
How can I fix USN-3207-2?
To fix USN-3207-2, update the Linux kernel to version 3.13.0.110.101 or later.
What is the severity of USN-3207-2?
The severity of USN-3207-2 is not specified.
Where can I find more information about USN-3207-2?
More information about USN-3207-2 can be found at the Ubuntu Security Notices website.
- agent/severity
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/title
- agent/weakness
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu gir1.2-packagekitglib-1.0
- version/ubuntu gir1.2-packagekitglib-1.0/12.04