[kernel-sec-discuss] r5571 - dsa-texts
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Sep 20 17:34:04 UTC 2017
Author: jmm
Date: 2017-09-20 17:34:04 +0000 (Wed, 20 Sep 2017)
New Revision: 5571
Modified:
dsa-texts/4.9.30-2+deb9u5
Log:
typos
Modified: dsa-texts/4.9.30-2+deb9u5
===================================================================
--- dsa-texts/4.9.30-2+deb9u5 2017-09-20 17:19:22 UTC (rev 5570)
+++ dsa-texts/4.9.30-2+deb9u5 2017-09-20 17:34:04 UTC (rev 5571)
@@ -2,19 +2,19 @@
CVE ID : CVE-2017-7518 CVE-2017-7558 CVE-2017-10661 CVE-2017-11600 CVE-2017-12134 CVE-2017-12146 CVE-2017-12153 CVE-2017-12154 CVE-2017-14051 CVE-2017-14106 CVE-2017-14140 CVE-2017-14156 CVE-2017-14340 CVE-2017-14489 CVE-2017-14497 CVE-2017-1000111 CVE-2017-1000112 CVE-2017-1000251 CVE-2017-1000252 CVE-2017-1000370 CVE-2017-1000371 CVE-2017-1000380
Several vulnerabilities have been discovered in the Linux kernel that
-may lead to a privilege escalation, denial of service or information
+may lead to privilege escalation, denial of service or information
leaks.
CVE-2017-7518
Andy Lutomirski discovered that KVM is prone to an incorrect debug
- exception(#DB) error occurring while emulating a syscall
- instruction. A process inside a quest can take advantage of this
+ exception (#DB) error occurring while emulating a syscall
+ instruction. A process inside a guest can take advantage of this
flaw for privilege escalation inside a guest.
CVE-2017-7558 (stretch only)
- Stefano Brivio of Red Hat discovered that the sctp subsystem is
+ Stefano Brivio of Red Hat discovered that the SCTP subsystem is
prone to a data leak vulnerability due to an out-of-bounds read
flaw, allowing to leak up to 100 uninitialized bytes to userspace.
More information about the kernel-sec-discuss
mailing list