Sunday, June 21, 2015

[USN-2641-2] Linux kernel (OMAP4) regression

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJVhwnrAAoJEAUvNnAY1cPYRqsQAJd2YSgXWpR6VkN6XHm1Os7I
O2Km01JavpD2AhSa3ShLvLexgJLqJ8Gf7XWjSUgzJRpvfrMj5G8Pvi6Z4jfd+suT
a0YgEMFnCy3M1E7EaM+whbHzoD4Q22THi0qabCtQYu3QC2aMBhFnr9maWdHtI3Yy
HluaSVXxnl2dXkphVvfp5eR6Kfvs3Z+2fB91dSSNbaF2deCE3kgUhLKLm0gEEKc6
BZexgMDah/wv5aJ0f5y2MbIbRNTATlbRyY7b0nD9K30A4wEAeKfyTpZDroN/Z2Ue
lOluOLz1EBULx36BIKheqlujq4DLSjPV5Tl/fWNxA/UrbWh5TmJySjST1QVVDQws
RCMJO+w9Dwy9Ev7vVa4rAZj2EEg7ZH15zjX7WJSk/9SKAU+UUwi98iJX/NLNczBJ
4XlC5k1Y0plW+a/WQa/mHguMdLT/nss/WYsEOyAdsR3P4ccv5hg7pB0qBW/xJesh
cPYORv/BULCBXIwI1Ik0TCyWQpN9sIQNz5xHRxy4TSCYbk7+b11jbkyhel0sLZYJ
H9iJHHHHVyxIYflbKbw2gbbM8/6Wp8Wz1vQXWbuvdCNG0CkHbyBfHJSTcE5fLPUn
hXFhEpnKGTqHPrcD8LzuPGmApx8pILbJrpY5N+YOhint2obeH1GVl2QPeoPs3duu
fMWOZXTM5nmIMDe6bI7P
=pxQa
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-2641-2
June 21, 2015

linux-ti-omap4 regression
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS

Summary:

The system could be made to crash under certain conditions.

Software Description:
- linux-ti-omap4: Linux kernel for OMAP4

Details:

The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's
overlayfs file system. The removal of a directory that only exists on the
lower layer results in a kernel panic.

We apologize for the inconvenience.

Original advisory details:

Philip Pettersson discovered a privilege escalation when using overlayfs
mounts inside of user namespaces. A local user could exploit this flaw to
gain administrative privileges on the system.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
linux-image-3.2.0-1466-omap4 3.2.0-1466.87

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2641-2
http://www.ubuntu.com/usn/usn-2641-1
http://bugs.launchpad.net/bugs/1465998

Package Information:
https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1466.87

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)