usn-2971-2
Vulnerability from osv_ubuntu
Published
2016-05-09 22:28
Modified
2026-02-10 04:40
Summary
linux-lts-wily vulnerabilities
Details

USN-2971-1 fixed vulnerabilities in the Linux kernel for Ubuntu 15.10. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 15.10 for Ubuntu 14.04 LTS.

Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not properly validate the endpoints reported by the device. An attacker with physical access could cause a denial of service (system crash). (CVE-2015-7515)

Zach Riggle discovered that the Linux kernel's list poison feature did not take into account the mmap_min_addr value. A local attacker could use this to bypass the kernel's poison-pointer protection mechanism while attempting to exploit an existing kernel vulnerability. (CVE-2016-0821)

Ralf Spenneberg discovered that the USB sound subsystem in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-2184)

Ralf Spenneberg discovered that the ATI Wonder Remote II USB driver in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-2185)

Ralf Spenneberg discovered that the PowerMate USB driver in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-2186)

Ralf Spenneberg discovered that the I/O-Warrior USB device driver in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-2188)

Sergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the MCT USB RS232 Converter device driver in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-3136)

Sergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the Cypress M8 USB device driver in the Linux kernel did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-3137)

Sergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the USB abstract device control driver for modems and ISDN adapters did not validate endpoint descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-3138)

Sergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the Linux kernel's USB driver for Digi AccelePort serial converters did not properly validate USB device descriptors. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-3140)

It was discovered that the IPv4 implementation in the Linux kernel did not perform the destruction of inet device objects properly. An attacker in a guest OS could use this to cause a denial of service (networking outage) in the host OS. (CVE-2016-3156)

Andy Lutomirski discovered that the Linux kernel did not properly context- switch IOPL on 64-bit PV Xen guests. An attacker in a guest OS could use this to cause a denial of service (guest OS crash), gain privileges, or obtain sensitive information. (CVE-2016-3157)

It was discovered that the Linux kernel's USB driver for IMS Passenger Control Unit devices did not properly validate the device's interfaces. An attacker with physical access could use this to cause a denial of service (system crash). (CVE-2016-3689)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2015-7515",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-0821",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-2184",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-2185",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-2186",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-2188",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3136",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3137",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3138",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3140",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3156",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3157",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-3689",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:14.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "block-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "block-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "block-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "block-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "block-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fb-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "input-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "input-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "input-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "input-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "input-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.2.0-36-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.2.0-36-lowlatency",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-generic-lpae",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-lowlatency",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-powerpc-e500mc",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-powerpc-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-powerpc64-emb",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.2.0-36-powerpc64-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-generic-lpae",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-lowlatency",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-powerpc-e500mc",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-powerpc-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-powerpc64-emb",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-4.2.0-36-powerpc64-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-image-extra-4.2.0-36-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-cloud-tools-4.2.0-36",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-tools-4.2.0-36",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-udebs-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-udebs-generic-lpae",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-udebs-powerpc-e500mc",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-udebs-powerpc-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-lts-wily-udebs-powerpc64-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-generic",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-generic-lpae",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-lowlatency",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-powerpc-e500mc",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-powerpc-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-powerpc64-emb",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.2.0-36-powerpc64-smp",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "md-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "md-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "md-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "md-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "md-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "message-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "message-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "message-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "message-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-pcmcia-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pcmcia-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "pcmcia-storage-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "serial-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.2.0-36-generic-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.2.0-36-generic-lpae-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.2.0-36-powerpc-e500mc-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.2.0-36-powerpc-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.2.0-36-powerpc64-smp-di",
            "binary_version": "4.2.0-36.41~14.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:14.04:LTS",
        "name": "linux-lts-wily",
        "purl": "pkg:deb/ubuntu/linux-lts-wily@4.2.0-36.41~14.04.1?arch=source\u0026distro=trusty"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.2.0-36.41~14.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "4.2.0-18.22~14.04.1",
        "4.2.0-19.23~14.04.1",
        "4.2.0-21.25~14.04.1",
        "4.2.0-22.27~14.04.1",
        "4.2.0-23.28~14.04.1",
        "4.2.0-25.30~14.04.1",
        "4.2.0-27.32~14.04.1",
        "4.2.0-30.35~14.04.1",
        "4.2.0-30.36~14.04.1",
        "4.2.0-34.39~14.04.1",
        "4.2.0-35.40~14.04.1"
      ]
    }
  ],
  "aliases": [],
  "details": "USN-2971-1 fixed vulnerabilities in the Linux kernel for Ubuntu 15.10.\nThis update provides the corresponding updates for the Linux Hardware\nEnablement (HWE) kernel from Ubuntu 15.10 for Ubuntu 14.04 LTS.\n\nRalf Spenneberg discovered that the Aiptek Tablet USB device driver in the\nLinux kernel did not properly validate the endpoints reported by the\ndevice. An attacker with physical access could cause a denial of service\n(system crash). (CVE-2015-7515)\n\nZach Riggle discovered that the Linux kernel\u0027s list poison feature did not\ntake into account the mmap_min_addr value. A local attacker could use this\nto bypass the kernel\u0027s poison-pointer protection mechanism while attempting\nto exploit an existing kernel vulnerability. (CVE-2016-0821)\n\nRalf Spenneberg discovered that the USB sound subsystem in the Linux kernel\ndid not properly validate USB device descriptors. An attacker with physical\naccess could use this to cause a denial of service (system crash).\n(CVE-2016-2184)\n\nRalf Spenneberg discovered that the ATI Wonder Remote II USB driver in the\nLinux kernel did not properly validate USB device descriptors. An attacker\nwith physical access could use this to cause a denial of service (system\ncrash). (CVE-2016-2185)\n\nRalf Spenneberg discovered that the PowerMate USB driver in the Linux\nkernel did not properly validate USB device descriptors. An attacker with\nphysical access could use this to cause a denial of service (system crash).\n(CVE-2016-2186)\n\nRalf Spenneberg discovered that the I/O-Warrior USB device driver in the\nLinux kernel did not properly validate USB device descriptors. An attacker\nwith physical access could use this to cause a denial of service (system\ncrash). (CVE-2016-2188)\n\nSergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the\nMCT USB RS232 Converter device driver in the Linux kernel did not properly\nvalidate USB device descriptors. An attacker with physical access could use\nthis to cause a denial of service (system crash). (CVE-2016-3136)\n\nSergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the\nCypress M8 USB device driver in the Linux kernel did not properly validate\nUSB device descriptors. An attacker with physical access could use this to\ncause a denial of service (system crash). (CVE-2016-3137)\n\nSergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the\nUSB abstract device control driver for modems and ISDN adapters did not\nvalidate endpoint descriptors. An attacker with physical access could use\nthis to cause a denial of service (system crash). (CVE-2016-3138)\n\nSergej Schumilo, Hendrik Schwartke, and Ralf Spenneberg discovered that the\nLinux kernel\u0027s USB driver for Digi AccelePort serial converters did not\nproperly validate USB device descriptors. An attacker with physical access\ncould use this to cause a denial of service (system crash). (CVE-2016-3140)\n\nIt was discovered that the IPv4 implementation in the Linux kernel did not\nperform the destruction of inet device objects properly. An attacker in a\nguest OS could use this to cause a denial of service (networking outage) in\nthe host OS. (CVE-2016-3156)\n\nAndy Lutomirski discovered that the Linux kernel did not properly context-\nswitch IOPL on 64-bit PV Xen guests. An attacker in a guest OS could use\nthis to cause a denial of service (guest OS crash), gain privileges, or\nobtain sensitive information. (CVE-2016-3157)\n\nIt was discovered that the Linux kernel\u0027s USB driver for IMS Passenger\nControl Unit devices did not properly validate the device\u0027s interfaces. An\nattacker with physical access could use this to cause a denial of service\n(system crash). (CVE-2016-3689)\n",
  "id": "USN-2971-2",
  "modified": "2026-02-10T04:40:59Z",
  "published": "2016-05-09T22:28:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-2971-2"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2015-7515"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-0821"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-2184"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-2185"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-2186"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-2188"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3136"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3137"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3138"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3140"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3156"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3157"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-3689"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "linux-lts-wily vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2015-7515",
    "UBUNTU-CVE-2016-0821",
    "UBUNTU-CVE-2016-2184",
    "UBUNTU-CVE-2016-2185",
    "UBUNTU-CVE-2016-2186",
    "UBUNTU-CVE-2016-2188",
    "UBUNTU-CVE-2016-3136",
    "UBUNTU-CVE-2016-3137",
    "UBUNTU-CVE-2016-3138",
    "UBUNTU-CVE-2016-3140",
    "UBUNTU-CVE-2016-3156",
    "UBUNTU-CVE-2016-3157",
    "UBUNTU-CVE-2016-3689"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…