Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:32206
HistoryJun 13, 2015 - 12:00 a.m.

[USN-2634-1] Linux kernel vulnerabilities

2015-06-1300:00:00
vulners.com
29
JSON

==========================================================================
Ubuntu Security Notice USN-2634-1
June 10, 2015

linux vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in the kernel.

Software Description:

  • linux: Linux kernel

Details:

Wen Xu discovered a use-after-free flaw in the Linux kernel's ipv4 ping
support. A local user could exploit this flaw to cause a denial of service
(system crash) or gain administrative privileges on the system.
(CVE-2015-3636)

A memory corruption flaw was discovered in the Linux kernel's scsi
subsystem. A local attacker could potentially exploit this flaw to cause a
denial of service (system crash). (CVE-2015-4036)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
linux-image-3.13.0-54-generic 3.13.0-54.91
linux-image-3.13.0-54-generic-lpae 3.13.0-54.91
linux-image-3.13.0-54-lowlatency 3.13.0-54.91
linux-image-3.13.0-54-powerpc-e500 3.13.0-54.91
linux-image-3.13.0-54-powerpc-e500mc 3.13.0-54.91
linux-image-3.13.0-54-powerpc-smp 3.13.0-54.91
linux-image-3.13.0-54-powerpc64-emb 3.13.0-54.91
linux-image-3.13.0-54-powerpc64-smp 3.13.0-54.91

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References:
http://www.ubuntu.com/usn/usn-2634-1
CVE-2015-3636, CVE-2015-4036

Package Information:
https://launchpad.net/ubuntu/+source/linux/3.13.0-54.91

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

openvas 37
nessus 48
ubuntu 10
prion 3
mageia 6
ubuntucve 3
debiancve 3
cve 3
securityvulns 3
thn 4
f5 2
android 2
redhat 6
cloudfoundry 1
fedora 8
oraclelinux 5
amazon 1
talosblog 1
ibm 1
debian 2
veracode 1
osv 1
centos 2
securelist 1
suse 11
androidsecurity 1
lenovo 1
openvas
openvas
Ubuntu Update for linux USN-2634-1
2015-06-11 00:00:00
Ubuntu Update for linux-lts-trusty USN-2633-1
2015-06-11 00:00:00
Ubuntu Update for linux-lts-vivid USN-2636-1
2015-06-11 00:00:00
nessus
nessus
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2633-1)
2015-06-11 00:00:00
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2634-1)
2015-06-11 00:00:00
Ubuntu 15.04 : linux vulnerabilities (USN-2638-1)
2015-06-11 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-06-10 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2015-06-10 00:00:00
Linux kernel vulnerabilities
2015-06-10 00:00:00
prion
prion
Memory corruption
2015-08-31 20:59:00
Code injection
2015-08-06 01:59:00
Design/Logic Flaw
2016-03-12 21:59:00
mageia
mageia
Updated kernel packages fix security vulnerabilities and bugs
2015-05-23 21:53:02
Updated kernel-tmb packages fix security vulnerabilities and bugs
2015-05-27 19:57:52
Updated kernel-linus packages fix security vulnerabilities and bugs
2015-05-27 19:57:52
ubuntucve
ubuntucve
CVE-2015-4036
2015-05-21 00:00:00
CVE-2015-3636
2015-05-02 00:00:00
CVE-2016-0821
2016-03-12 00:00:00
debiancve
debiancve
CVE-2015-4036
2015-08-31 20:59:00
CVE-2015-3636
2015-08-06 01:59:00
CVE-2016-0821
2016-03-12 21:59:00
cve
cve
CVE-2015-4036
2015-08-31 20:59:00
CVE-2015-3636
2015-08-06 01:59:00
CVE-2016-0821
2016-03-12 21:59:00
securityvulns
securityvulns
Linux kernel security vulnerabilities
2015-06-21 00:00:00
[SECURITY] [DSA 3290-1] linux security update
2015-06-21 00:00:00
[USN-2631-1] Linux kernel vulnerabilities
2015-06-13 00:00:00
thn
thn
New Android Malware Secretly Records Phone Calls and Steals Private Data
2018-04-03 14:21:00
CopyCat Android Rooting Malware Infected 14 Million Devices
2017-07-06 05:17:00
This New Android Malware Can Gain Root Access to Your Smartphones
2021-10-29 13:48:00
f5
f5
SOL17246 - Linux kernel vulnerability CVE-2015-3636
2015-09-08 00:00:00
K17246 : Linux kernel vulnerability CVE-2015-3636
2015-09-08 00:00:00
android
android
CVE-2015-3636
2015-09-01 00:00:00
PingPongRoot
2015-05-08 00:00:00
redhat
redhat
(RHSA-2015:1643) Moderate: kernel security and bug fix update
2015-08-18 00:00:00
(RHSA-2015:1583) Moderate: kernel security and bug fix update
2015-08-11 00:00:00
(RHSA-2015:1564) Moderate: kernel-rt security, bug fix, and enhancement update
2015-08-05 00:00:00
cloudfoundry
cloudfoundry
CVE-2015-3636 - ipv4 use-after-free | Cloud Foundry
2015-06-12 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: kernel-4.0.2-300.fc22
2015-05-11 19:03:23
[SECURITY] Fedora 21 Update: kernel-4.0.4-202.fc21
2015-06-01 17:07:06
[SECURITY] Fedora 21 Update: kernel-3.19.7-200.fc21
2015-05-12 20:41:10
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-07-15 00:00:00
Unbreakable Enterprise kernel security update
2015-07-16 00:00:00
kernel security and bug fix update
2015-08-05 00:00:00
amazon
amazon
Medium: kernel
2015-05-14 14:27:00
talosblog
talosblog
Fake AV Investigation Unearths KevDroid, New Android Malware
2018-04-02 08:48:00
ibm
ibm
Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM
2018-06-18 01:29:25
debian
debian
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
veracode
veracode
Privilege Escalation
2019-05-02 05:41:45
osv
osv
linux - security update
2015-06-18 00:00:00
centos
centos
kernel, perf, python security update
2015-08-06 04:42:16
kernel, perf, python security update
2015-07-15 15:04:33
securelist
securelist
Skygofree: Following in the footsteps of HackingTeam
2018-01-16 10:00:58
suse
suse
Security update for the Linux Kernel (important)
2015-08-14 11:09:20
Live patch for the Linux Kernel (important)
2015-09-04 12:16:25
Live patch for the Linux Kernel (important)
2015-09-04 12:09:23
androidsecurity
androidsecurity
Nexus Security Bulletin - September 2015
2015-09-09 00:00:00
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04
JSON
Related for SECURITYVULNS:DOC:32206
openvas37nessus48ubuntu10prion3mageia6ubuntucve3debiancve3cve3securityvulns3thn4f52android2redhat6cloudfoundry1fedora8oraclelinux5amazon1talosblog1ibm1debian2veracode1osv1centos2securelist1suse11androidsecurity1lenovo1