Ubuntu

USN-2887-2: Linux kernel (Trusty HWE) vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2887-2

1st February, 2016

linux-lts-trusty vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 12.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-lts-trusty
– Linux hardware enablement kernel from Trusty

Details

It was discovered that a use-after-free vulnerability existed in the
AF_UNIX implementation in the Linux kernel. A local attacker could use
crafted epoll_ctl calls to cause a denial of service (system crash) or
expose sensitive information. (CVE-2013-7446)

It was discovered that the KVM implementation in the Linux kernel did not
properly restore the values of the Programmable Interrupt Timer (PIT). A
user-assisted attacker in a KVM guest could cause a denial of service in
the host (system crash). (CVE-2015-7513)

Sasha Levin discovered that the Reliable Datagram Sockets (RDS)
implementation in the Linux kernel had a race condition when checking
whether a socket was bound or not. A local attacker could use this to cause
a denial of service (system crash). (CVE-2015-7990)

It was discovered that the Btrfs implementation in the Linux kernel
incorrectly handled compressed inline extants on truncation. A local
attacker could use this to expose sensitive information. (CVE-2015-8374)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 12.04 LTS:: linux-image-3.13.0-77-generic

3.13.0-77.121~precise1; linux-image-3.13.0-77-generic-lpae

3.13.0-77.121~precise1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed.
Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,
linux-powerpc), a standard system upgrade will automatically perform
this as well.

References

Ubuntu

USN-2888-1: Linux kernel (Utopic HWE) vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2888-1

1st February, 2016

linux-lts-utopic vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 14.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-lts-utopic
– Linux hardware enablement kernel from Utopic

Details

It was discovered that the Linux kernel keyring subsystem contained a race
between read and revoke operations. A local attacker could use this to
cause a denial of service (system crash). (CVE-2015-7550)

郭永刚 discovered that the Linux kernel networking implementation did
not validate protocol identifiers for certain protocol families, A local
attacker could use this to cause a denial of service (system crash) or
possibly gain administrative privileges. (CVE-2015-8543)

Dmitry Vyukov discovered that the pptp implementation in the Linux kernel
did not verify an address length when setting up a socket. A local attacker
could use this to craft an application that exposed sensitive information
from kernel memory. (CVE-2015-8569)

David Miller discovered that the Bluetooth implementation in the Linux
kernel did not properly validate the socket address length for Synchronous
Connection-Oriented (SCO) sockets. A local attacker could use this to
expose sensitive information. (CVE-2015-8575)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.04 LTS:: linux-image-3.16.0-60-powerpc64-smp

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-lowlatency

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-generic

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-generic-lpae

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-powerpc-e500mc

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-powerpc64-emb

3.16.0-60.80~14.04.1; linux-image-3.16.0-60-powerpc-smp

3.16.0-60.80~14.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Hackers News

Google Patches Critical Remotely-exploitable Flaws in Latest Android Update

February 2, 2016 007admin Leave a comment

Google has released the February Security Update for Android that patches multiple security vulnerabilities discovered in the latest version of Android operating system.

In total, there were five “critical” security vulnerabilities fixed in the release along with four “high” severity and one merely “moderate” issues.

Remote Code Execution Flaw in WiFi

A set of two critical vulnerabilities has been found in the Broadcom WiFi driver that could be exploited by attackers to perform Remote Code Execution (RCE) on affected Android devices when connected to the same network as the attacker.

The vulnerabilities (CVE-2016-0801 and CVE-2016-0802) can be exploited by sending specially crafted wireless control message packets that can corrupt kernel memory, potentially leading to remote code execution at the kernel level.

“These vulnerabilities can be triggered when the attacker and the victim are associated with the same network,” reads the advisory. “This issue is rated as a Critical severity due to the possibility of remote code execution in the context of the kernel without requiring user interaction.”

Remote Code Execution Flaw in Mediaserver

Another set of two critical security vulnerabilities were discovered in Mediaserver that was targeted last summer by critical Stagefright vulnerabilities and exploits, allowing anyone to compromise an Android device by sending just a specially crafted MMS message.

The recently discovered flaws (CVE-2016-0803 and CVE-2016-0804) in Mediaserver could enable remote code execution (RCE) on affected Android devices through email, web browsing, or MMS files when processing media files.

Moreover, a separate vulnerability called elevation of privilege (CVE-2016-0810) was also discovered in Mediaserver that could be exploited to gain elevated capabilities, including Signature or SignatureOrSystem permissions privileges, that aren’t accessible to third-party apps.

Two Elevation of Privilege vulnerabilities has also been found in Qualcomm components: the Qualcomm Performance Module (CVE-2016-0805) and the Qualcomm Wi-Fi Driver (CVE-2016-0806). Both the flaws, rated as critical, leveraged an attacker to launch further attacks.

Another critically rated bug (CVE-2016-0807) discovered in the Debuggerd component could open the door to execute arbitrary code within the device’s root level. Debuggerd is a software tool used for debugging and analyzing Android crashes.

Other high severity bugs include:

An elevation of privilege vulnerability in the Android Wi-Fi component
A denial-of-service vulnerability in the Minikin library
An information disclosure bug in libmediaplayerservice

The final set of vulnerabilities is an Elevation of Privilege flaw in Setup Wizard that could allow a hacker to bypass the Factory Reset Protection and gain access to the affected device.

All the Security patches are currently made available for Nexus devices only. Google also shared the patches with carrier and manufacturer partners on January 4, but users of other Android devices should have to wait until their devices receive an update.

Nexus device users are advised to patch the flaws by flashing their devices to this new build immediately. Users can also wait for the OTA (Over-the-Air) update that will be out in the next week or so.

Ubuntu

USN-2889-1: Linux kernel vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2889-1

1st February, 2016

linux vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04

Summary

Several security issues were fixed in the kernel.

Software description

linux
– Linux kernel

Details

It was discovered that the netfilter Network Address Translation (NAT)
implementation did not ensure that data structures were initialized when
handling IPv4 addresses. An attacker could use this to cause a denial of
service (system crash). (CVE-2015-8787)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: linux-image-3.19.0-49-powerpc-smp

3.19.0-49.55; linux-image-3.19.0-49-powerpc-e500mc

3.19.0-49.55; linux-image-3.19.0-49-lowlatency

3.19.0-49.55; linux-image-3.19.0-49-generic-lpae

3.19.0-49.55; linux-image-3.19.0-49-powerpc64-emb

3.19.0-49.55; linux-image-3.19.0-49-generic

3.19.0-49.55; linux-image-3.19.0-49-powerpc64-smp

3.19.0-49.55

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Ubuntu

USN-2889-2: Linux kernel (Vivid HWE) vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2889-2

1st February, 2016

linux-lts-vivid vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 14.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-lts-vivid
– Linux hardware enablement kernel from Vivid

Details

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.04 LTS:: linux-image-3.19.0-49-powerpc-smp

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-powerpc-e500mc

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-lowlatency

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-generic-lpae

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-powerpc64-emb

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-generic

3.19.0-49.55~14.04.1; linux-image-3.19.0-49-powerpc64-smp

3.19.0-49.55~14.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Ubuntu

USN-2890-1: Linux kernel vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2890-1

1st February, 2016

linux vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.10

Summary

Several security issues were fixed in the kernel.

Software description

linux
– Linux kernel

Details

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.10:: linux-image-4.2.0-27-lowlatency

4.2.0-27.32; linux-image-4.2.0-27-generic-lpae

4.2.0-27.32; linux-image-4.2.0-27-powerpc-e500mc

4.2.0-27.32; linux-image-4.2.0-27-powerpc64-emb

4.2.0-27.32; linux-image-4.2.0-27-powerpc-smp

4.2.0-27.32; linux-image-4.2.0-27-powerpc64-smp

4.2.0-27.32; linux-image-4.2.0-27-generic

4.2.0-27.32

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Ubuntu

USN-2890-2: Linux kernel (Wily HWE) vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2890-2

1st February, 2016

linux-lts-wily vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 14.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-lts-wily
– Linux hardware enablement kernel from Wily

Details

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.04 LTS:: linux-image-4.2.0-27-lowlatency

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-generic-lpae

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-powerpc-e500mc

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-powerpc64-emb

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-powerpc-smp

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-powerpc64-smp

4.2.0-27.32~14.04.1; linux-image-4.2.0-27-generic

4.2.0-27.32~14.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Ubuntu

USN-2890-3: Linux kernel (Raspberry Pi 2) vulnerabilities

February 2, 2016 007admin Leave a comment

Ubuntu Security Notice USN-2890-3

1st February, 2016

linux-raspi2 vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.10

Summary

Several security issues were fixed in the kernel.

Software description

linux-raspi2
– Linux kernel for Raspberry Pi 2

Details

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.10:: linux-image-4.2.0-1022-raspi2

4.2.0-1022.29

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Security

Botan C++ Crypto Algorithms Library 1.10.11

February 1, 2016 007admin Leave a comment

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.

Security

Autonics DAQMaster 1.7.3 DQP Parsing Buffer Overflow

February 1, 2016 007admin Leave a comment

DAQMaster version 1.7.3 suffers from a vulnerability that is caused due to a boundary error in the processing of a project file, which can be exploited to cause a buffer overflow when a user opens e.g. a specially crafted .DQP project file with a large array of bytes inserted in the ‘Description’ element. Successful exploitation could allow execution of arbitrary code on the affected machine.

Ubuntu Security Notice USN-2887-2

linux-lts-trusty vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2888-1

linux-lts-utopic vulnerabilities

Summary

Software description

Details

Update instructions

References

Remote Code Execution Flaw in WiFi

Remote Code Execution Flaw in Mediaserver

Other high severity bugs include:

Ubuntu Security Notice USN-2889-1

linux vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2889-2

linux-lts-vivid vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2890-1

linux vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2890-2

linux-lts-wily vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2890-3

linux-raspi2 vulnerabilities

Summary

Software description

Details

Update instructions

References

Software and Security Information