Test ID:	1.3.6.1.4.1.25623.1.0.843170
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3292-2)
Summary:	The remote host is missing an update for the 'linux-hwe' package(s) announced via the USN-3292-2 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-hwe' package(s) announced via the USN-3292-2 advisory. Vulnerability Insight: USN-3292-1 fixed a vulnerability in the Linux kernel for Ubuntu 16.10. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS. Jason Donenfeld discovered a heap overflow in the MACsec module in the Linux kernel. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Affected Software/OS: 'linux-hwe' package(s) on Ubuntu 16.04. Solution: Please install the updated package(s). CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7477 1038500 http://www.securitytracker.com/id/1038500 98014 http://www.securityfocus.com/bid/98014 RHSA-2017:1615 https://access.redhat.com/errata/RHSA-2017:1615 RHSA-2017:1616 https://access.redhat.com/errata/RHSA-2017:1616 https://bugzilla.redhat.com/show_bug.cgi?id=1445207 https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=4d6fa57b4dab0d77f4d8e9d9c73d1e63f6fe8fee https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=5294b83086cc1c35b4efeca03644cf9d12282e5b
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.