OVAL Reference oval:com.ubuntu.xenial:def:201628530000000

Oval Definition:

oval:com.ubuntu.xenial:def:201628530000000

Revision Date:	2016-05-02	Version:	1
Title:	CVE-2016-2853 on Ubuntu 16.04 LTS (xenial) - low.
Description:	The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-2853
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information linux package in xenial is affected and needs fixing. OR linux-aws package in xenial is affected and needs fixing. OR linux-euclid: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'was needed ESM criteria'). OR linux-flo: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'abandoned'). OR linux-gcp package in xenial is affected and needs fixing. OR linux-gke: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'was needed now end-of-life'). OR linux-goldfish: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'abandoned'). OR linux-kvm package in xenial is affected and needs fixing. OR linux-mako: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'abandoned'). OR linux-meta package in xenial is affected and needs fixing. OR linux-meta-aws package in xenial is affected and needs fixing. OR linux-meta-gcp package in xenial is affected and needs fixing. OR linux-meta-kvm package in xenial is affected and needs fixing. OR linux-meta-raspi2 package in xenial is affected and may need fixing. OR linux-meta-snapdragon package in xenial is affected and may need fixing. OR linux-raspi2 package in xenial is affected and may need fixing. OR linux-signed package in xenial is affected and needs fixing. OR linux-signed-gcp package in xenial is affected and needs fixing. OR linux-snapdragon package in xenial is affected and may need fixing.

BACK