Ubuntu update for Linux kernel (OMAP4)



Risk Medium
Patch available YES
Number of vulnerabilities 3
CVE-ID CVE-2016-6828
CVE-2016-6136
CVE-2016-6480
CWE-ID CWE-416
CWE-362
Exploitation vector Local
Public exploit Public exploit code for vulnerability #1 is available.
Vulnerable software
Subscribe 		Ubuntu
Operating systems & Components / Operating system

Vendor Canonical Ltd.

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) “Use-after-free” error

EUVDB-ID: #VU360

Risk: Low

CVSSv3.1: 5.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2016-6828

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows local users to provoke a denial of service.

The vulnerability predicts TCP realization by a local user.

Successful exploitation of this vulnerability will allow an attacker to cause a denial of service.

Mitigation

Update the affected packages

Ubuntu 12.04 LTS:
linux-image-3.2.0-1489-omap4 3.2.0-1489.116

Vulnerable software versions

Ubuntu: 12.04

CPE2.3 External links

http://www.ubuntu.com/usn/usn-3097-2/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

2) Race condition

EUVDB-ID: #VU358

Risk: Low

CVSSv3.1: 4.6 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2016-6136

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows local users to interrupt system-call auditing.

The vulnerability exists due to parafunction of audit_log_single_execve_arg. By altering "double fetch" vulnerability, a local user can bypass set limitations and interrupt system-call auditing.

Successful exploitation of this vulnerability will allow an attacker to interrupt system-call auditing and perform a race condition.

Mitigation

Update the affected packages

Ubuntu 12.04 LTS:
linux-image-3.2.0-1489-omap4 3.2.0-1489.116

Vulnerable software versions

Ubuntu: 12.04

CPE2.3 External links

http://www.ubuntu.com/usn/usn-3097-2/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Race condition

EUVDB-ID: #VU359

Risk: Medium

CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2016-6480

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows local users to provoke a denial of service.

The vulnerability exists due to parafunction of ioctl_send_fib. By altering "double fetch" vulnerability, a local user can provoke a denial of service.

Successful exploitation of this vulnerability will allow an attacker to cause a denial of service

Mitigation

Update the affected packages

Ubuntu 12.04 LTS:
linux-image-3.2.0-1489-omap4 3.2.0-1489.116

Vulnerable software versions

Ubuntu: 12.04

CPE2.3 External links

http://www.ubuntu.com/usn/usn-3097-2/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###