SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionMissing length check of payload in net/sctp/sm_make_chunk.c:_sctp_make_chunk() function allows denial of service :
An error in the '_sctp_make_chunk()' function (net/sctp/sm_make_chunk.c) when handling SCTP, packet length can be exploited by a malicious local user to cause a kernel crash and a DoS.
Mishandling mutex within libsas allowing local Denial of Service
The Serial Attached SCSI (SAS) implementation in the Linux kernel mishandles a mutex within libsas. This allows local users to cause a denial of service (deadlock) by triggering certain error-handling code. (CVE-2017-18232)
A flaw was found in the Linux kernel's client-side implementation of the cifs protocol. This flaw allows an attacker controlling the server to kernel panic a client which has the CIFS server mounted.(CVE-2018-1066)
SolutionRun 'yum update kernel' to update your system.