Canonical announced a few hours ago the availability of a new security update for the Raspberry Pi 2 kernel packages of the Ubuntu 16.10 (Yakkety Yak) operating system, which patches a total of five newly discovered vulnerabilities.
The first security flaw (CVE-2016-10147) was discovered by Mikulas Patocka in Linux kernel's mcryptd, the asynchronous multibuffer cryptographic daemon, which appears to incorrectly handle incompatible algorithms. This could allow a local attacker to crash the system by causing a denial of service.
The second vulnerability (CVE-2016-10150) is a use-after-free discovered in Linux kernel's KVM (Kernel-based Virtual Machine) subsystem when creating devices, which could have allowed a local attacker to crash the system via a denial of service.
- Raspbian Linux OS for Raspberry Pi Is Now Based on Debian GNU/Linux 9 "Stretch"
- Android-Based RaspAnd OS Updated for Raspberry Pi 3 with Google Play Support
- RaspEX Linux Brings Ubuntu 17.04 with LXDE Desktop to Raspberry Pi 3 and 2 SBCs
- Canonical Starts Work on a Linux 4.12 Kernel for Ubuntu 17.10 for Raspberry Pi 2
- GPIO Zero 1.4 Is Out for Raspberry Pi SBCs, Update Your Raspbian Linux OS Now
- NanoPi K2 Board Gets Ubuntu Core Firmware Image