Ubuntu Security Notice USN-2805-1

Ubuntu Security Notice USN-2805-1: Posted Nov 10, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2805-1 - Ben Serebrin discovered that the KVM hypervisor implementation in the Linux kernel did not properly catch Alignment Check exceptions. An attacker in a guest virtual machine could use this to cause a denial of service (system crash) in the host OS.; tags | advisory, denial of service, kernel; systems | linux, ubuntu; advisories | CVE-2015-5307; SHA-256 | d49392fbbe0f8ecbfd43bc6f1c3fb1141b6ee064a0424167df46885153ecf590; Download | Favorite | View

Ubuntu Security Notice USN-2805-1

Content-Disposition: inline

==========================================================================Ubuntu Security Notice USN-2805-1
November 10, 2015

linux-lts-utopic vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 LTS

Summary:

The system could be made to crash under certain conditions.

Software Description:
- linux-lts-utopic: Linux hardware enablement kernel from Utopic

Details:

Ben Serebrin discovered that the KVM hypervisor implementation in the Linux
kernel did not properly catch Alignment Check exceptions. An attacker in a
guest virtual machine could use this to cause a denial of service (system
crash) in the host OS.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  linux-image-3.16.0-53-generic   3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-generic-lpae  3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-lowlatency  3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-powerpc-e500mc  3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-powerpc-smp  3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-powerpc64-emb  3.16.0-53.72~14.04.1
  linux-image-3.16.0-53-powerpc64-smp  3.16.0-53.72~14.04.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References:
  http://www.ubuntu.com/usn/usn-2805-1
  CVE-2015-5307

Package Information:
  https://launchpad.net/ubuntu/+source/linux-lts-utopic/3.16.0-53.72~14.04.1

Top Authors In Last 30 Days

Red Hat 223 files
Ubuntu 57 files
LiquidWorm 23 files
Debian 19 files
indoushka 15 files
Apple 9 files
Google Security Research 5 files
Gentoo 5 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

Ubuntu Security Notice USN-2805-1

Ubuntu Security Notice USN-2805-1

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-2805-1

Share This

Ubuntu Security Notice USN-2805-1

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems