Test ID:	1.3.6.1.4.1.25623.1.0.843416
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3523-3)
Summary:	The remote host is missing an update for the 'linux-raspi2' package(s) announced via the USN-3523-3 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-raspi2' package(s) announced via the USN-3523-3 advisory. Vulnerability Insight: Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel did not properly check the relationship between pointer values and the BPF stack. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-17863) Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-16995) Alexei Starovoitov discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel contained a branch-pruning logic issue around unreachable code. A local attacker could use this to cause a denial of service. (CVE-2017-17862) Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel mishandled pointer data values in some situations. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2017-17864) Affected Software/OS: 'linux-raspi2' package(s) on Ubuntu 17.10. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-16995 BugTraq ID: 102288 http://www.securityfocus.com/bid/102288 Debian Security Information: DSA-4073 (Google Search) https://www.debian.org/security/2017/dsa-4073 https://www.exploit-db.com/exploits/44298/ https://www.exploit-db.com/exploits/45010/ https://www.exploit-db.com/exploits/45058/ http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=95a762e2c8c942780948091f8f2a4f32fce1ac6f http://openwall.com/lists/oss-security/2017/12/21/2 https://bugs.chromium.org/p/project-zero/issues/detail?id=1454 https://github.com/torvalds/linux/commit/95a762e2c8c942780948091f8f2a4f32fce1ac6f https://usn.ubuntu.com/usn/usn-3523-2/ https://usn.ubuntu.com/3619-1/ https://usn.ubuntu.com/3619-2/ https://usn.ubuntu.com/3633-1/ Common Vulnerability Exposure (CVE) ID: CVE-2017-17862 BugTraq ID: 102325 http://www.securityfocus.com/bid/102325 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c131187db2d3fa2f8bf32fdf4e9a4ef805168467 https://anonscm.debian.org/cgit/kernel/linux.git/tree/debian/patches/bugfix/all/bpf-fix-branch-pruning-logic.patch?h=stretch-security https://github.com/torvalds/linux/commit/c131187db2d3fa2f8bf32fdf4e9a4ef805168467 https://www.spinics.net/lists/stable/msg206984.html http://www.securitytracker.com/id/1040057 Common Vulnerability Exposure (CVE) ID: CVE-2017-17863 BugTraq ID: 102321 http://www.securityfocus.com/bid/102321 https://anonscm.debian.org/cgit/kernel/linux.git/tree/debian/patches/bugfix/all/bpf-reject-out-of-bounds-stack-pointer-calculation.patch?h=stretch-security https://www.spinics.net/lists/stable/msg206985.html http://www.securitytracker.com/id/1040058 https://usn.ubuntu.com/3523-3/ Common Vulnerability Exposure (CVE) ID: CVE-2017-17864 BugTraq ID: 102320 http://www.securityfocus.com/bid/102320 https://anonscm.debian.org/cgit/kernel/linux.git/commit/?h=stretch-security&id=ad775f6ff7eebb93eedc2f592bc974260e7757b0 https://anonscm.debian.org/cgit/kernel/linux.git/tree/debian/patches/bugfix/all/bpf-verifier-fix-states_equal-comparison-of-pointer-and-unknown.patch?h=stretch-security http://www.securitytracker.com/id/1040059
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.