Ubuntu Security Notification for Linux Vulnerabilities (USN-3070-1)漏洞银行丨0DAY BANK

A missing permission check when settings ACLs was discovered in nfsd.

An information leak in the Reliable Datagram Sockets (RDS) implementation in the Linux kernel.

It was discovered that the airspy USB device driver in the Linux kernel did not properly handle certain error conditions.

A flaw in the TCP implementation's handling of challenge acks in the Linux kernel.

A race condition in the MIC VOP driver in the Linux kernel.

It was discovered that on PowerPC platforms, the Linux kernel mishandled transactional memory state on exec().

It was discovered that a heap based buffer overflow existed in the USB HID driver in the Linux kernel.

It was discovered that the OverlayFS implementation in the Linux kernel did not properly verify dentry state before proceeding with unlink and rename operations.

A local user could exploit this flaw to gain access to any file by setting an ACL. (CVE-2016-1237)

A local attacker could use this to obtain potentially sensitive information from kernel memory. (CVE-2016-5244)

An attacker with physical access could use this to cause a denial of service (memory consumption). (CVE-2016-5400)

A remote attacker could use this to cause a denial of service (reset connection) or inject content into an TCP stream. (CVE-2016-5696)

A local attacker could use this to cause a denial of service (system crash) or obtain potentially sensitive information from kernel memory. (CVE-2016-5728)

A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2016-5828)

A local attacker could use this cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2016-5829)

A local attacker could use this to cause a denial of service (system crash). (CVE-2016-6197)

Refer to Ubuntu advisory USN-3070-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-lowlatency)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-powerpc64-emb)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-generic-lpae)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-generic)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-powerpc64-smp)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-powerpc-e500mc)

USN-3070-1: 16.04 (Xenial) on src (linux-image-4.4.0-36-powerpc-smp)