Amazon Linux Security Advisory for kernel: ALAS-2016-740漏洞银行丨0DAY BANK

A use after free vulnerability was found in tcp_xmit_retransmit_queue and other tcp_* functions.

Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service.

Please refer to Amazon advisory ALAS-2016-740 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

ALAS-2016-740: Amazon Linux (kernel (4.4.19-29.55.amzn1) on noarch)

ALAS-2016-740: Amazon Linux (kernel (4.4.19-29.55.amzn1) on x86_64)

ALAS-2016-740: Amazon Linux (kernel (4.4.19-29.55.amzn1) on src)

ALAS-2016-740: Amazon Linux (kernel (4.4.19-29.55.amzn1) on i686)