Canonical Patches New Vulnerability for Ubuntu 15.10's Desktop and Raspberry Pi 2 Kernels

2016-Jan-06 | Tags: kernelraspberrypisecurityubuntuupdate

Linux on ARMJust a few minutes ago, on January 5, 2016, Canonical published several Ubuntu Security Notices to inform Ubuntu users about the availability of new Linux kernel versions for their operating systems.

According to Ubuntu Security Notice USN-2858-3, USN-2857-1 and USN-2858-1, it would appear that there was an issue with Linux kernel's OverlayFS implementation, which did not correctly handle setattr operations, thus allowing an unprivileged local attacker to execute arbitrary code as root by creating files with administrative permission attributes. The security issue is documented as CVE-2015-8660.


comments powered by Disqus
Facebook Twitter RSS E-Mail

Linux on ARM