Ubuntu Security Notice (C) 2015-2016 Canonical, Inc. / NASL script (C) 2015-2016 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related
Dmitry Vyukov discovered that the Linux kernel's keyring handler
attempted to garbage collect incompletely instantiated keys. A local
unprivileged attacker could use this to cause a denial of service
(system crash). (CVE-2015-7872)
Jan Beulich discovered that the KVM svm hypervisor implementation in
the Linux kernel did not properly catch Debug exceptions on AMD
processors. An attacker in a guest virtual machine could use this to
cause a denial of service (system crash) in the host OS.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 4.7
CVSS Temporal Score : 3.9
Public Exploit Available : true