Description
* A use-after-free vulnerability was found in the kernel' socket recvmmsg
subsystem. This may allow remote attackers to corrupt memory and may allow
execution of arbitrary code. This corruption takes place during the error
handling routines within __sys_recvmmsg() function. (CVE-2016-7117, Important)
* A use-after-free vulnerability was found in tcp_xmit_retransmit_queue and
other tcp_* functions. This condition could allow an attacker to send an
incorrect selective acknowledgment to existing connections, possibly resetting a
connection. (CVE-2016-6828, Moderate)
* A flaw was found in the Linux kernel' implementation of the SCTP protocol. A
remote attacker could trigger an out-of-bounds read with an offset of up to 64kB
potentially causing the system to crash. (CVE-2016-9555, Moderate)