[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 4187-1] linux security update

On Tue, May 01, 2018 at 05:12:02PM +0000, Ben Hutchings wrote:
> -------------------------------------------------------------------------
> Debian Security Advisory DSA-4187-1                   security@debian.org
> https://www.debian.org/security/                            Ben Hutchings
> May 01, 2018                          https://www.debian.org/security/faq
> -------------------------------------------------------------------------
> 
> Package        : linux
> CVE ID         : CVE-2015-9016 CVE-2017-0861 CVE-2017-5715 CVE-2017-5753
>                  CVE-2017-13166 CVE-2017-13220 CVE-2017-16526 CVE-2017-16911
>                  CVE-2017-16912 CVE-2017-16913 CVE-2017-16914 CVE-2017-18017
>                  CVE-2017-18203 CVE-2017-18216 CVE-2017-18232 CVE-2017-18241
>                  CVE-2018-1066 CVE-2018-1068 CVE-2018-1092 CVE-2018-5332
>                  CVE-2018-5333 CVE-2018-5750 CVE-2018-5803 CVE-2018-6927
>                  CVE-2018-7492 CVE-2018-7566 CVE-2018-7740 CVE-2018-7757
>                  CVE-2018-7995 CVE-2018-8781 CVE-2018-8822 CVE-2018-1000004
>                  CVE-2018-1000199
> 
> Several vulnerabilities have been discovered in the Linux kernel that
> may lead to a privilege escalation, denial of service or information
> leaks.

There are multiple reports on #ganeti that this update breaks networking
in certain circumstances, probably multiple tun/tap device configurations.
No more details or a proper bug report yet as I haven't experienced this
myself, but mentioning in case it saves anyone else breakage.

Cheers,
Dominic.
Reply to: