USN-3331-1
See a problem?- Source
- https://ubuntu.com/security/notices/USN-3331-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3331-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-3331-1
- Related
- Published
- 2017-06-22T02:59:06.027272Z
- Modified
- 2017-06-22T02:59:06.027272Z
- Summary
- linux-aws vulnerability
- Details
-
It was discovered that the stack guard page for processes in the Linux kernel was not sufficiently large enough to prevent overlapping with the heap. An attacker could leverage this with another vulnerability to execute arbitrary code and gain administrative privileges
- References
Affected packages
Ubuntu:16.04:LTS / linux-aws
Package
- Name
- linux-aws
- Purl
- pkg:deb/ubuntu/linux-aws@4.4.0-1020.29?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.4.0-1020.29
Affected versions
4.*
4.4.0-1001.10
4.4.0-1003.12
4.4.0-1004.13
4.4.0-1007.16
4.4.0-1009.18
4.4.0-1011.20
4.4.0-1012.21
4.4.0-1013.22
4.4.0-1016.25
4.4.0-1017.26
4.4.0-1018.27
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"linux-aws-headers-4.4.0-1020": "4.4.0-1020.29",
"linux-headers-4.4.0-1020-aws": "4.4.0-1020.29",
"linux-aws-cloud-tools-4.4.0-1020": "4.4.0-1020.29",
"linux-cloud-tools-4.4.0-1020-aws": "4.4.0-1020.29",
"linux-aws-tools-4.4.0-1020": "4.4.0-1020.29",
"linux-aws-cloud-tools-4.4.0-1020-dbgsym": "4.4.0-1020.29",
"linux-aws-tools-4.4.0-1020-dbgsym": "4.4.0-1020.29",
"linux-image-4.4.0-1020-aws-dbgsym": "4.4.0-1020.29",
"linux-tools-4.4.0-1020-aws": "4.4.0-1020.29",
"linux-image-4.4.0-1020-aws": "4.4.0-1020.29"
}
]
}