Debian GNU/Linux 9 "Stretch" Gets New Kernel Patch to Fix Two Security Flaws
The Debian Project published a new linux security advisory to inform users of the Debian GNU/Linux 9 “Stretch” operating system series about a new kernel security patch that fixes two vulnerabilities.
Coming just a week after the latest major kernel security update for Debian GNU/Linux 9 “Stretch,” the new Linux kernel security patch is here to address a flaw (CVE-2018-15471) discovered by Google Project Zero’s Felix Wilhelm in the hash handling of Linux kernel’s xen-netback module, which could result in information leaks, privilege escalation, as well as denial of service.
“Felix Wilhelm of Google Project Zero discovered a flaw in the hash handling of the xen-netback Linux kernel module. A malicious or buggy frontend may cause the (usually pri… (read more)