OVAL Reference oval:com.ubuntu.xenial:def:20169191000

Oval Definition:

oval:com.ubuntu.xenial:def:20169191000

Revision Date:	2016-11-27	Version:	1
Title:	CVE-2016-9191 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	The cgroup offline implementation in the Linux kernel through 4.8.11 mishandles certain drain operations, which allows local users to cause a denial of service (system hang) by leveraging access to a container environment for executing a crafted application, as demonstrated by trinity. CAI Qian discovered that the sysctl implementation in the Linux kernel did not properly perform reference counting in some situations. An unprivileged attacker could use this to cause a denial of service (system hang).
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-9191
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'linux' package in xenial was vulnerable but has been fixed (note: '4.4.0-63.84'). OR The 'linux-aws' package in xenial was vulnerable but has been fixed (note: '4.4.0-1003.12'). OR NOT While related to the CVE in some way, the 'linux-azure' package in xenial is not affected (note: '4.11.0-1009.9'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'was needed ESM criteria'). OR NOT While related to the CVE in some way, the 'linux-flo' package in xenial is not affected. OR NOT While related to the CVE in some way, the 'linux-gcp' package in xenial is not affected (note: '4.10.0-1004.4'). OR NOT While related to the CVE in some way, the 'linux-gke' package in xenial is not affected (note: '4.4.0-1003.3'). OR NOT While related to the CVE in some way, the 'linux-goldfish' package in xenial is not affected. OR The 'linux-hwe' package in xenial was vulnerable but has been fixed (note: '4.10.0-27.30~16.04.2'). OR The 'linux-hwe-edge' package in xenial was vulnerable but has been fixed (note: '4.10.0-27.30~16.04.2'). OR NOT While related to the CVE in some way, the 'linux-kvm' package in xenial is not affected (note: '4.4.0-1004.9'). OR NOT While related to the CVE in some way, the 'linux-mako' package in xenial is not affected. OR NOT While related to the CVE in some way, the 'linux-oem' package in xenial is not affected (note: '4.13.0-1008.9'). OR The 'linux-raspi2' package in xenial was vulnerable but has been fixed (note: '4.4.0-1044.51'). OR The 'linux-snapdragon' package in xenial was vulnerable but has been fixed (note: '4.4.0-1047.51').

BACK