Ubuntu 14.04 : linux vulnerability (USN-2274-1)

Ubuntu Security Notice (C) 2014-2015 Canonical, Inc. / NASL script (C) 2014-2015 Tenable Network Security, Inc.

Synopsis :

The remote Ubuntu host is missing one or more security-related patches.

Description :

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace
syscall on x86_64 processors. An attacker could exploit this flaw to
cause a denial of service (System Crash) or potential gain
administrative privileges.

Solution :

Update the affected linux-image-3.13.0-30-generic,
linux-image-3.13.0-30-generic-lpae and / or
linux-image-3.13.0-30-lowlatency packages.

Risk factor :

Medium / CVSS Base Score : 6.9
CVSS Temporal Score : 6.0
Public Exploit Available : true

Family: Ubuntu Local Security Checks

Nessus Plugin ID: 76386 ()

Bugtraq ID: 68411

CVE ID: CVE-2014-4699