Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cloudfoundryCloud FoundryCFOUNDRY:EC22D7C9EDB0A72523F94F026F02A4D4
HistoryMar 09, 2017 - 12:00 a.m.

USN-3220-2: Linux kernel (Xenial HWE) vulnerability | Cloud Foundry

2017-03-0900:00:00
Cloud Foundry
www.cloudfoundry.org
37

0.0004 Low

EPSS

Percentile

10.1%

JSON

Severity

High

Vendor

Canonical Ubuntu

Versions Affected

  • Ubuntu 14.04 LTS

Description

Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges.

Mitigation

OSS users are strongly encouraged to follow one of the mitigations below:

The Cloud Foundry team recommends upgrading to the following BOSH stemcells:

* Upgrade 3151.x versions to 3151.12
* Upgrade 3233.x versions to 3233.15
* Upgrade 3263.x versions to 3263.21
* Upgrade 3312.x versions to 3312.21
* Upgrade 3363.x versions to 3363.10

References

Related

ubuntu 8
redhat 10
openvas 40
nessus 68
archlinux 4
thn 1
ubuntucve 1
suse 21
nvd 1
redhatcve 1
veracode 1
avleonov 1
ptsecurity 1
f5 1
debiancve 1
cve 1
prion 1
cvelist 1
virtuozzo 1
centos 2
photon 2
seebug 1
oraclelinux 9
mageia 3
debian 3
osv 2
ibm 4
ubuntu
ubuntu
Linux kernel vulnerability
2017-03-07 00:00:00
Linux kernel (HWE) vulnerability
2017-03-08 00:00:00
Linux kernel (Trusty HWE) vulnerability
2017-03-08 00:00:00
redhat
redhat
(RHSA-2017:1233) Important: kernel security update
2017-05-16 09:06:20
(RHSA-2017:1126) Important: kernel security update
2017-04-25 09:21:16
(RHSA-2017:0986) Important: kernel security update
2017-04-18 09:16:05
openvas
openvas
Ubuntu: Security Advisory (USN-3220-1)
2017-03-08 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2017-1066)
2020-01-23 00:00:00
Ubuntu: Security Advisory (USN-3218-1)
2017-03-08 00:00:00
nessus
nessus
F5 Networks BIG-IP : Linux kernel vulnerability (K18015201)
2017-03-30 00:00:00
RHEL 6 : kernel (RHSA-2017:1126)
2017-04-26 00:00:00
Ubuntu 12.04 LTS : linux-lts-trusty vulnerability (USN-3219-2)
2017-03-08 00:00:00
archlinux
archlinux
[ASA-201703-7] linux-grsec: privilege escalation
2017-03-13 00:00:00
[ASA-201703-8] linux: privilege escalation
2017-03-14 00:00:00
[ASA-201703-6] linux-lts: privilege escalation
2017-03-12 00:00:00
thn
thn
Linux Kernel Gets Patch For Years-Old Serious Vulnerability
2017-03-16 04:54:00
ubuntucve
ubuntucve
CVE-2017-2636
2017-03-07 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2017-04-03 21:09:21
Security update for the Linux Kernel (important)
2017-04-03 21:08:52
Security update for the Linux Kernel (important)
2017-03-30 06:10:44
nvd
nvd
CVE-2017-2636
2017-03-07 22:59:00
redhatcve
redhatcve
CVE-2017-2636
2019-11-03 16:23:08
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:17:04
avleonov
avleonov
Why you can’t update it all at once?
2017-04-22 20:25:16
ptsecurity
ptsecurity
PT-2017-06: Race Condition in Linux
2017-02-28 00:00:00
f5
f5
K18015201 : Linux kernel vulnerability CVE-2017-2636
2017-03-28 00:00:00
debiancve
debiancve
CVE-2017-2636
2017-03-07 22:59:00
cve
cve
CVE-2017-2636
2017-03-07 22:59:00
prion
prion
Race condition
2017-03-07 22:59:00
cvelist
cvelist
CVE-2017-2636
2017-03-07 22:00:00
virtuozzo
virtuozzo
Important kernel security update: Virtuozzo ReadyKernel patch 18.0 for kernels 3.10.0-327.18.2.vz7.15.2 (Virtuozzo 7.0.0), 3.10.0-327.36.1.vz7.18.7 (Virtuozzo 7.0.1), and 3.10.0-327.36.1.vz7.20.18 (Virtuozzo 7.0.3)
2017-04-12 00:00:00
centos
centos
kernel, perf, python security update
2017-04-12 12:56:09
kernel, perf, python security update
2017-04-13 11:00:48
photon
photon
Important Photon OS Security Update - PHSA-2017-0031
2017-03-28 00:00:00
Critical Photon OS Security Update - PHSA-2018-0031
2018-03-29 00:00:00
seebug
seebug
Linux kernel local privilege escalation flaw in n_hdlc(CVE-2017-2636οΌ‰
2017-03-09 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2017-04-11 00:00:00
kernel security, bug fix, and enhancement update
2017-04-13 00:00:00
kernel security, bug fix, and enhancement update
2017-04-12 00:00:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel-linus packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel-tmb packages fixes security vulnerabilities
2017-03-25 23:15:34
debian
debian
[SECURITY] [DLA 849-1] linux security update
2017-03-09 12:06:12
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
osv
osv
linux - security update
2017-03-08 00:00:00
linux - security update
2017-03-08 00:00:00
ibm
ibm
Security Bulletin: Multiple packages as used in IBM Security QRadar Packet Capture are vulnerable to various security issues.
2020-10-28 17:16:55
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel
2018-06-16 22:02:59
Security Bulletin: IBM Security Guardium is affected by Open Source packages vulnerabilities
2018-06-16 22:04:22

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for CFOUNDRY:EC22D7C9EDB0A72523F94F026F02A4D4
ubuntu8redhat10openvas40nessus68archlinux4thn1ubuntucve1suse21nvd1redhatcve1veracode1avleonov1ptsecurity1f51debiancve1cve1prion1cvelist1virtuozzo1centos2photon2seebug1oraclelinux9mageia3debian3osv2ibm4