Denial of Service in Linux
ID: | USN-3035-1 |
Distribution: | Ubuntu |
Plattformen: | Ubuntu 15.10 |
Datum: | Fr, 15. Juli 2016, 07:12 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3070 |
Applikationen: | Linux |
Originalnachricht |
|
--===============5796321761215179072== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="uCPdOCrL+PnN2Vxy" Content-Disposition: inline --uCPdOCrL+PnN2Vxy Content-Type: text/plain; charset=us-ascii Content-Disposition: inline ========================================================================== Ubuntu Security Notice USN-3035-1 July 14, 2016 linux vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.10 Summary: The system could be made to crash under certain conditions. Software Description: - linux: Linux kernel Details: Jan Stancek discovered that the Linux kernel's memory manager did not properly handle moving pages mapped by the asynchronous I/O (AIO) ring buffer to the other nodes. A local attacker could use this to cause a denial of service (system crash). Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: linux-image-4.2.0-42-generic 4.2.0-42.49 linux-image-4.2.0-42-generic-lpae 4.2.0-42.49 linux-image-4.2.0-42-lowlatency 4.2.0-42.49 linux-image-4.2.0-42-powerpc-e500mc 4.2.0-42.49 linux-image-4.2.0-42-powerpc-smp 4.2.0-42.49 linux-image-4.2.0-42-powerpc64-emb 4.2.0-42.49 linux-image-4.2.0-42-powerpc64-smp 4.2.0-42.49 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: http://www.ubuntu.com/usn/usn-3035-1 CVE-2016-3070 Package Information: https://launchpad.net/ubuntu/+source/linux/4.2.0-42.49 --uCPdOCrL+PnN2Vxy Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJXiBcBAAoJEC8Jno0AXoH0QJ4P/2j9F+kfHqI63B2P0S52p0pi Z57KE+ZjsL43Bj26ku/3z+EMRHtrk8Aaq7nkHVzo3mJND8PAIRwvLPPC8wEGO5Sf v1/k5zFfFDd/pumfafwgfyC5PWIhhsTENLC5eOxdm+trXz/YxVWxXlS0KTNMNEPO S11Jaws4XdrqU9QI9j2EqF10+uQaDzRROsYzY+aTLtGGUI21j4vwFgU3ol7+t1Xe pUO8VV2lgDlANq0FU98ywPfxAE9J5iT5OX8ldRfJGOpslzX1l2SjZuGKth8QuD+O Fve6PCcm9vnfBnlEHYQ0yOStGOsXPHMyT0xJ6Bc2ip67D9TK1Ow8Xx4fHiDzSLHF ntQ/5pZd437DsEc/akqBuuAOQn6UZjPzUAY2oNB+4qZukczI/6hVzc146YO7aSs1 0Jix9YD0IJ1p0UeNDGpmFhYCWeY5iymDTKZcFieyWyjwHsuw3deVZQsy3VixsOSA 4zhsfdMHZ9L8yqjJz0Mij263DqI1xNoejrggj8Ka3thPeXXPlN2G2CJ1MD1EUTWn I196POWWRvrOrvPkY0w6zmM0aUbsnFkwHn1Qjit54l1BVZcMeejL9ZYYMD4ES2Mj kloRWkWSTFQBpbE7kBsoP+Ja/AKFqY1IEfnVAhrbjVwddT7KiCSKnkReDXVdFi5O DcmVbn+XeBYoPmRRfT4h =qnzE -----END PGP SIGNATURE----- --uCPdOCrL+PnN2Vxy-- --===============5796321761215179072== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce --===============5796321761215179072==-- |