usn-3016-4
Vulnerability from osv_ubuntu
Published
2016-06-27 20:55
Modified
2026-02-10 04:41
Summary
linux-lts-xenial vulnerabilities
Details

USN-3016-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS.

Jesse Hertz and Tim Newsham discovered that the Linux netfilter implementation did not correctly perform validation when handling 32 bit compatibility IPT_SO_SET_REPLACE events on 64 bit platforms. A local unprivileged attacker could use this to cause a denial of service (system crash) or execute arbitrary code with administrative privileges. (CVE-2016-4997)

Kangjie Lu discovered an information leak in the core USB implementation in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. (CVE-2016-4482)

Kangjie Lu discovered an information leak in the timer handling implementation in the Advanced Linux Sound Architecture (ALSA) subsystem of the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. (CVE-2016-4569, CVE-2016-4578)

Kangjie Lu discovered an information leak in the X.25 Call Request handling in the Linux kernel. A local attacker could use this to obtain potentially sensitive information from kernel memory. (CVE-2016-4580)

It was discovered that an information leak exists in the Rock Ridge implementation in the Linux kernel. A local attacker who is able to mount a malicious iso9660 file system image could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2016-4913)

Baozeng Ding discovered that the Transparent Inter-process Communication (TIPC) implementation in the Linux kernel did not verify socket existence before use in some situations. A local attacker could use this to cause a denial of service (system crash). (CVE-2016-4951)

Jesse Hertz and Tim Newsham discovered that the Linux netfilter implementation did not correctly perform validation when handling IPT_SO_SET_REPLACE events. A local unprivileged attacker could use this to cause a denial of service (system crash) or obtain potentially sensitive information from kernel memory. (CVE-2016-4998)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2016-4482",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4569",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4578",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4580",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4913",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4951",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4997",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "high",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2016-4998",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:14.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "block-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "block-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "block-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "block-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "block-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "crypto-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fat-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fb-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "firewire-core-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "floppy-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-core-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "fs-secondary-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "input-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "input-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "input-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "input-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "input-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ipmi-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "irda-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "kernel-image-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.4.0-28-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-cloud-tools-4.4.0-28-lowlatency",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-generic-lpae",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-lowlatency",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-powerpc-e500mc",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-powerpc-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-powerpc64-emb",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-headers-4.4.0-28-powerpc64-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-generic-lpae",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-lowlatency",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-powerpc-e500mc",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-powerpc-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-powerpc64-emb",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-4.4.0-28-powerpc64-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-image-extra-4.4.0-28-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-cloud-tools-4.4.0-28",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-tools-4.4.0-28",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-udebs-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-udebs-generic-lpae",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-udebs-powerpc-e500mc",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-udebs-powerpc-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-lts-xenial-udebs-powerpc64-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-generic",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-generic-lpae",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-lowlatency",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-powerpc-e500mc",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-powerpc-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-powerpc64-emb",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "linux-tools-4.4.0-28-powerpc64-smp",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "md-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "md-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "md-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "md-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "md-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "message-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "message-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "message-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "message-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "mouse-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "multipath-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nfs-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-pcmcia-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-shared-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "nic-usb-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "parport-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pata-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pcmcia-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "pcmcia-storage-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "plip-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "ppp-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "sata-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "scsi-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "serial-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "speakup-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "squashfs-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "storage-core-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "usb-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "virtio-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.4.0-28-generic-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.4.0-28-generic-lpae-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.4.0-28-powerpc-e500mc-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.4.0-28-powerpc-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          },
          {
            "binary_name": "vlan-modules-4.4.0-28-powerpc64-smp-di",
            "binary_version": "4.4.0-28.47~14.04.1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:14.04:LTS",
        "name": "linux-lts-xenial",
        "purl": "pkg:deb/ubuntu/linux-lts-xenial@4.4.0-28.47~14.04.1?arch=source\u0026distro=trusty"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.4.0-28.47~14.04.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "4.4.0-13.29~14.04.1",
        "4.4.0-14.30~14.04.2",
        "4.4.0-15.31~14.04.1",
        "4.4.0-18.34~14.04.1",
        "4.4.0-21.37~14.04.1",
        "4.4.0-22.39~14.04.1",
        "4.4.0-22.40~14.04.1",
        "4.4.0-24.43~14.04.1"
      ]
    }
  ],
  "aliases": [],
  "details": "USN-3016-1 fixed vulnerabilities in the Linux kernel for Ubuntu\n16.04 LTS. This update provides the corresponding updates for the\nLinux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for\nUbuntu 14.04 LTS.\n\nJesse Hertz and Tim Newsham discovered that the Linux netfilter\nimplementation did not correctly perform validation when handling 32 bit\ncompatibility IPT_SO_SET_REPLACE events on 64 bit platforms. A local\nunprivileged attacker could use this to cause a denial of service (system\ncrash) or execute arbitrary code with administrative privileges.\n(CVE-2016-4997)\n\nKangjie Lu discovered an information leak in the core USB implementation in\nthe Linux kernel. A local attacker could use this to obtain potentially\nsensitive information from kernel memory. (CVE-2016-4482)\n\nKangjie Lu discovered an information leak in the timer handling\nimplementation in the Advanced Linux Sound Architecture (ALSA) subsystem of\nthe Linux kernel. A local attacker could use this to obtain potentially\nsensitive information from kernel memory. (CVE-2016-4569, CVE-2016-4578)\n\nKangjie Lu discovered an information leak in the X.25 Call Request handling\nin the Linux kernel. A local attacker could use this to obtain potentially\nsensitive information from kernel memory. (CVE-2016-4580)\n\nIt was discovered that an information leak exists in the Rock Ridge\nimplementation in the Linux kernel. A local attacker who is able to mount a\nmalicious iso9660 file system image could exploit this flaw to obtain\npotentially sensitive information from kernel memory. (CVE-2016-4913)\n\nBaozeng Ding discovered that the Transparent Inter-process Communication\n(TIPC) implementation in the Linux kernel did not verify socket existence\nbefore use in some situations. A local attacker could use this to cause a\ndenial of service (system crash). (CVE-2016-4951)\n\nJesse Hertz and Tim Newsham discovered that the Linux netfilter\nimplementation did not correctly perform validation when handling\nIPT_SO_SET_REPLACE events. A local unprivileged attacker could use this to\ncause a denial of service (system crash) or obtain potentially sensitive\ninformation from kernel memory. (CVE-2016-4998)\n",
  "id": "USN-3016-4",
  "modified": "2026-02-10T04:41:01Z",
  "published": "2016-06-27T20:55:14Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-3016-4"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4482"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4569"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4578"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4580"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4913"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4951"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4997"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-4998"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "linux-lts-xenial vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2016-4482",
    "UBUNTU-CVE-2016-4569",
    "UBUNTU-CVE-2016-4578",
    "UBUNTU-CVE-2016-4580",
    "UBUNTU-CVE-2016-4913",
    "UBUNTU-CVE-2016-4951",
    "UBUNTU-CVE-2016-4997",
    "UBUNTU-CVE-2016-4998"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…