Test ID:	1.3.6.1.4.1.25623.1.0.843534
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3657-1)
Summary:	The remote host is missing an update for the 'linux-raspi2' package(s) announced via the USN-3657-1 advisory.
Description:	Summary: The remote host is missing an update for the 'linux-raspi2' package(s) announced via the USN-3657-1 advisory. Vulnerability Insight: It was discovered that the netlink subsystem in the Linux kernel did not properly restrict observations of netlink messages to the appropriate net namespace. A local attacker could use this to expose sensitive information (kernel netlink traffic). (CVE-2017-17449) Tuba Yavuz discovered that a double-free error existed in the USBTV007 driver of the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-17975) It was discovered that a race condition existed in the Device Mapper component of the Linux kernel. A local attacker could use this to cause a denial of service (system crash). (CVE-2017-18203) It was discovered that an infinite loop could occur in the madvise(2) implementation in the Linux kernel in certain circumstances. A local attacker could use this to cause a denial of service (system hang). (CVE-2017-18208) Silvio Cesare discovered a buffer overwrite existed in the NCPFS implementation in the Linux kernel. A remote attacker controlling a malicious NCPFS server could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-8822) Affected Software/OS: 'linux-raspi2' package(s) on Ubuntu 17.10. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-17449 BugTraq ID: 102122 http://www.securityfocus.com/bid/102122 Debian Security Information: DSA-4073 (Google Search) https://www.debian.org/security/2017/dsa-4073 Debian Security Information: DSA-4082 (Google Search) https://www.debian.org/security/2018/dsa-4082 https://lkml.org/lkml/2017/12/5/950 RedHat Security Advisories: RHSA-2018:0654 https://access.redhat.com/errata/RHSA-2018:0654 RedHat Security Advisories: RHSA-2018:0676 https://access.redhat.com/errata/RHSA-2018:0676 RedHat Security Advisories: RHSA-2018:1062 https://access.redhat.com/errata/RHSA-2018:1062 RedHat Security Advisories: RHSA-2018:1130 https://access.redhat.com/errata/RHSA-2018:1130 RedHat Security Advisories: RHSA-2018:1170 https://access.redhat.com/errata/RHSA-2018:1170 https://usn.ubuntu.com/3619-1/ https://usn.ubuntu.com/3619-2/ https://usn.ubuntu.com/3653-1/ https://usn.ubuntu.com/3653-2/ https://usn.ubuntu.com/3655-1/ https://usn.ubuntu.com/3655-2/ https://usn.ubuntu.com/3657-1/ Common Vulnerability Exposure (CVE) ID: CVE-2017-17975 BugTraq ID: 102330 http://www.securityfocus.com/bid/102330 Debian Security Information: DSA-4188 (Google Search) https://www.debian.org/security/2018/dsa-4188 http://linuxtesting.org/pipermail/ldv-project/2017-November/001008.html https://usn.ubuntu.com/3654-1/ https://usn.ubuntu.com/3654-2/ https://usn.ubuntu.com/3656-1/ Common Vulnerability Exposure (CVE) ID: CVE-2017-18203 BugTraq ID: 103184 http://www.securityfocus.com/bid/103184 Debian Security Information: DSA-4187 (Google Search) https://www.debian.org/security/2018/dsa-4187 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b9a41d21dceadf8104812626ef85dc56ee8a60ed https://github.com/torvalds/linux/commit/b9a41d21dceadf8104812626ef85dc56ee8a60ed https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.3 https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html RedHat Security Advisories: RHSA-2018:1854 https://access.redhat.com/errata/RHSA-2018:1854 RedHat Security Advisories: RHSA-2019:4154 https://access.redhat.com/errata/RHSA-2019:4154 Common Vulnerability Exposure (CVE) ID: CVE-2017-18208 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6ea8d958a2c95a1d514015d4e29ba21a8c0a1a91 https://github.com/torvalds/linux/commit/6ea8d958a2c95a1d514015d4e29ba21a8c0a1a91 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.4 RedHat Security Advisories: RHSA-2018:2948 https://access.redhat.com/errata/RHSA-2018:2948 RedHat Security Advisories: RHSA-2018:3083 https://access.redhat.com/errata/RHSA-2018:3083 RedHat Security Advisories: RHSA-2018:3096 https://access.redhat.com/errata/RHSA-2018:3096 RedHat Security Advisories: RHSA-2019:3967 https://access.redhat.com/errata/RHSA-2019:3967 RedHat Security Advisories: RHSA-2019:4057 https://access.redhat.com/errata/RHSA-2019:4057 RedHat Security Advisories: RHSA-2019:4058 https://access.redhat.com/errata/RHSA-2019:4058 Common Vulnerability Exposure (CVE) ID: CVE-2018-8822 BugTraq ID: 103476 http://www.securityfocus.com/bid/103476 http://www.openwall.com/lists/oss-security/2022/12/27/3
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.