CVE-2016-7425 Ubuntu Security Notification for Linux Vulnerabilities (USN-3145-1)

It was discovered that the driver for Areca RAID Controllers in the Linux kernel did not properly validate control messages.

A stack-based buffer overflow in the Broadcom IEEE802.11n FullMAC driver in the Linux kernel.

A local attacker could use this to cause a denial of service (system crash) or possibly gain privileges. (CVE-2016-7425)

A local attacker could use this to cause a denial of service (system crash) or possibly gain privileges. (CVE-2016-8658)

Refer to Ubuntu advisory USN-3145-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-powerpc-smp)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-powerpc-e500mc)

USN-3145-1: 14.04 (Kylin) on src (linux-image-lowlatency)

USN-3145-1: 14.04 (Kylin) on src (linux-image-omap)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-lowlatency)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-powerpc64-emb)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-generic-lpae)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-generic)

USN-3145-1: 14.04 (Kylin) on src (linux-image-powerpc-smp)

USN-3145-1: 14.04 (Kylin) on src (linux-image-generic)

USN-3145-1: 14.04 (Kylin) on src (linux-image-powerpc64-smp)

USN-3145-1: 14.04 (Kylin) on src (linux-image-powerpc-e500mc)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-powerpc64-smp)

USN-3145-1: 14.04 (Kylin) on src (linux-image-3.13.0-103-powerpc-e500)

USN-3145-1: 14.04 (Kylin) on src (linux-image-generic-lpae)

USN-3145-1: 14.04 (Kylin) on src (linux-image-powerpc64-emb)