漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data.
It was discovered that multiple memory leaks existed in the XFS implementation in the Linux kernel.
漏洞危害
A remote attacker could use this to cause a denial of service (system crash). (CVE-2016-9555)
A local attacker could use this to cause a denial of service (memory consumption). (CVE-2016-9685)
解决方案
Refer to Ubuntu advisory USN-3187-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-highbank)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-powerpc64-smp)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-powerpc-smp)
USN-3187-1: 12.04 (Precise) on src (linux-image-omap)
USN-3187-1: 12.04 (Precise) on src (linux-image-powerpc-smp)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-virtual)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-generic-pae)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-generic)
USN-3187-1: 12.04 (Precise) on src (linux-image-virtual)
USN-3187-1: 12.04 (Precise) on src (linux-image-generic-pae)
USN-3187-1: 12.04 (Precise) on src (linux-image-powerpc64-smp)
USN-3187-1: 12.04 (Precise) on src (linux-image-generic)
USN-3187-1: 12.04 (Precise) on src (linux-image-highbank)
USN-3187-1: 12.04 (Precise) on src (linux-image-3.2.0-121-omap)
0day
文章评论