USN-3470-1: Linux kernel vulnerabilities
First published: Tue Oct 31 2017(Updated: )
Qian Zhang discovered a heap-based buffer overflow in the tipc_msg_build() function in the Linux kernel. A local attacker could use to cause a denial of service (system crash) or possibly execute arbitrary code with administrative privileges. (CVE-2016-8632) Dmitry Vyukov discovered that a race condition existed in the timerfd subsystem of the Linux kernel when handling might_cancel queuing. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-10661) It was discovered that the Flash-Friendly File System (f2fs) implementation in the Linux kernel did not properly validate superblock metadata. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-10662, CVE-2017-10663) Anthony Perard discovered that the Xen virtual block driver did not properly initialize some data structures before passing them to user space. A local attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. (CVE-2017-10911) It was discovered that a use-after-free vulnerability existed in the POSIX message queue implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-11176) Dave Chinner discovered that the XFS filesystem did not enforce that the realtime inode flag was settable only on filesystems on a realtime device. A local attacker could use this to cause a denial of service (system crash). (CVE-2017-14340)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/linux-image-3.13.0-135-generic | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-generic-lpae | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-lowlatency | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-powerpc-e500 | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-powerpc-e500mc | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-powerpc-smp | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-powerpc64-emb | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 | |
| All of | ||
| ubuntu/linux-image-3.13.0-135-powerpc64-smp | <3.13.0-135.184 | 3.13.0-135.184 |
| Ubuntu gir1.2-packagekitglib-1.0 | =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2016-8632
- https://ubuntu.com/security/CVE-2017-10661
- https://ubuntu.com/security/CVE-2017-10662
- https://ubuntu.com/security/CVE-2017-10663
- https://ubuntu.com/security/CVE-2017-10911
- https://ubuntu.com/security/CVE-2017-11176
- https://ubuntu.com/security/CVE-2017-14340
- https://ubuntu.com/security/notices/USN-3190-1
- https://ubuntu.com/security/notices/USN-3312-2
- https://ubuntu.com/security/notices/USN-3312-1
- https://ubuntu.com/security/notices/USN-3470-2
- https://ubuntu.com/security/notices/USN-3190-2
- https://ubuntu.com/security/notices/USN-3468-2
- https://ubuntu.com/security/notices/USN-3468-3
- https://ubuntu.com/security/notices/USN-3420-1
- https://ubuntu.com/security/notices/USN-3420-2
- https://ubuntu.com/security/notices/USN-3468-1
- https://ubuntu.com/security/notices/USN-3414-1
- https://ubuntu.com/security/notices/USN-3469-1
- https://ubuntu.com/security/notices/USN-3469-2
- https://ubuntu.com/security/notices/USN-3405-1
- https://ubuntu.com/security/notices/USN-3405-2
- https://launchpad.net/ubuntu/+source/linux/3.13.0-135.184
- https://ubuntu.com/security/notices/USN-3470-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the severity of USN-3470-1?
The severity of USN-3470-1 is high.
How can a local attacker exploit the vulnerability in USN-3470-1?
A local attacker can exploit the vulnerability in USN-3470-1 to cause a denial of service (system crash) or possibly execute arbitrary code with administrative privileges.
Which Linux kernel versions are affected by USN-3470-1?
Linux kernel versions 3.13.0-135.184 and earlier are affected by USN-3470-1.
Where can I find more information about CVE-2016-8632?
You can find more information about CVE-2016-8632 at https://ubuntu.com/security/CVE-2016-8632.
Where can I find more information about the other vulnerabilities mentioned in USN-3470-1?
You can find more information about the other vulnerabilities mentioned in USN-3470-1 at the following links: CVE-2017-10661 - https://ubuntu.com/security/CVE-2017-10661, CVE-2017-10662 - https://ubuntu.com/security/CVE-2017-10662.
- agent/references
- agent/severity
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/title
- agent/weakness
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu gir1.2-packagekitglib-1.0
- version/ubuntu gir1.2-packagekitglib-1.0/14.04