Test ID:	1.3.6.1.4.1.25623.1.0.842798
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3008-1)
Summary:	The remote host is missing an update for the 'linux-snapdragon' package(s) announced via the USN-3008-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-snapdragon' package(s) announced via the USN-3008-1 advisory. Vulnerability Insight: Jann Horn discovered that eCryptfs improperly attempted to use the mmap() handler of a lower filesystem that did not implement one, causing a recursive page fault to occur. A local unprivileged attacker could use to cause a denial of service (system crash) or possibly execute arbitrary code with administrative privileges. Affected Software/OS: 'linux-snapdragon' package(s) on Ubuntu 16.04. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1583 BugTraq ID: 91157 http://www.securityfocus.com/bid/91157 Debian Security Information: DSA-3607 (Google Search) http://www.debian.org/security/2016/dsa-3607 https://www.exploit-db.com/exploits/39992/ http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.html https://bugs.chromium.org/p/project-zero/issues/detail?id=836 https://github.com/torvalds/linux/commit/f0fe970df3838c202ef6c07a4c2b36838ef0a88b http://www.openwall.com/lists/oss-security/2016/06/10/8 http://www.openwall.com/lists/oss-security/2016/06/22/1 RedHat Security Advisories: RHSA-2016:2124 http://rhn.redhat.com/errata/RHSA-2016-2124.html RedHat Security Advisories: RHSA-2016:2766 http://rhn.redhat.com/errata/RHSA-2016-2766.html RedHat Security Advisories: RHSA-2017:2760 https://access.redhat.com/errata/RHSA-2017:2760 http://www.securitytracker.com/id/1036763 SuSE Security Announcement: SUSE-SU-2016:1596 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.html SuSE Security Announcement: SUSE-SU-2016:1672 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html SuSE Security Announcement: SUSE-SU-2016:1696 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html SuSE Security Announcement: SUSE-SU-2016:1937 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html SuSE Security Announcement: SUSE-SU-2016:1961 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html SuSE Security Announcement: SUSE-SU-2016:1985 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html SuSE Security Announcement: SUSE-SU-2016:1994 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html SuSE Security Announcement: SUSE-SU-2016:1995 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html SuSE Security Announcement: SUSE-SU-2016:2000 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html SuSE Security Announcement: SUSE-SU-2016:2002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html SuSE Security Announcement: SUSE-SU-2016:2005 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html SuSE Security Announcement: SUSE-SU-2016:2006 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html SuSE Security Announcement: SUSE-SU-2016:2007 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html SuSE Security Announcement: SUSE-SU-2016:2009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html SuSE Security Announcement: SUSE-SU-2016:2010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html SuSE Security Announcement: SUSE-SU-2016:2014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html SuSE Security Announcement: SUSE-SU-2016:2105 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html SuSE Security Announcement: openSUSE-SU-2016:1641 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html SuSE Security Announcement: openSUSE-SU-2016:2184 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html http://www.ubuntu.com/usn/USN-2996-1 http://www.ubuntu.com/usn/USN-2997-1 http://www.ubuntu.com/usn/USN-2998-1 http://www.ubuntu.com/usn/USN-2999-1 http://www.ubuntu.com/usn/USN-3000-1 http://www.ubuntu.com/usn/USN-3001-1 http://www.ubuntu.com/usn/USN-3002-1 http://www.ubuntu.com/usn/USN-3003-1 http://www.ubuntu.com/usn/USN-3004-1 http://www.ubuntu.com/usn/USN-3005-1 http://www.ubuntu.com/usn/USN-3006-1 http://www.ubuntu.com/usn/USN-3007-1 http://www.ubuntu.com/usn/USN-3008-1
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.