USN-3220-1 fixed a vulnerability in the Linux kernel. This update provides the corresponding updates for the Linux kernel for Amazon Web Services (AWS).
Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly gain administrative privileges.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-cloud-tools-4.4.0-1007" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-cloud-tools-4.4.0-1007-dbgsym" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-cloud-tools-common" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-headers-4.4.0-1007" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-source-4.4.0" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-tools-4.4.0-1007" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-tools-4.4.0-1007-dbgsym" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-aws-tools-common" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-cloud-tools-4.4.0-1007-aws" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-headers-4.4.0-1007-aws" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-image-4.4.0-1007-aws" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-image-4.4.0-1007-aws-dbgsym" }, { "binary_version": "4.4.0-1007.16", "binary_name": "linux-tools-4.4.0-1007-aws" } ] }