漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that the keyring interface in the Linux kernel contained a buffer overflow when displaying timeout events via the /proc/keys interface.
漏洞危害
A local attacker could use this to cause a denial of service (system crash).
解决方案
Refer to Ubuntu advisory USN-3129-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-lowlatency)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-powerpc64-emb)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-powerpc-smp)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-powerpc-smp)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-powerpc64-emb)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-generic)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-generic-lpae)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-generic)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-virtual)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-lowlatency)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-powerpc64-smp)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-generic-lpae)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-powerpc-e500mc)
USN-3129-1: 16.10 (Yakkety) on src (linux-image-4.8.0-27-powerpc-e500mc)
0day
文章评论