USN-4303-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM.
Paulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested (level 2) guest access the resources of a parent (level 1) guest in certain situations. An attacker could use this to expose sensitive information.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-powerpc64-smp" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-generic" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-powerpc64-emb" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-powerpc-smp" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-powerpc-e500mc" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-lowlatency" }, { "binary_version": "4.4.0-176.206~14.04.1", "binary_name": "linux-image-4.4.0-176-generic-lpae" } ] }