USN-2887-1

Advisory lineage Upstream: 8 Downstream: 0

Upstream

CVE-2013-7446 CVE-2015-7513 CVE-2015-7990 CVE-2015-8374 UBUNTU-CVE-2013-7446 UBUNTU-CVE-2015-7513

Published: 02 Feb 2016, 00:37

Last modified:22 Apr 2026, 09:20

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Feb 2016, 00:37

Published

Vulnerability first disclosed

22 Apr 2026, 09:20

Last Modified

Vulnerability information updated

Description

linux vulnerabilities It was discovered that a use-after-free vulnerability existed in the AF_UNIX implementation in the Linux kernel. A local attacker could use crafted epoll_ctl calls to cause a denial of service (system crash) or expose sensitive information. (CVE-2013-7446) It was discovered that the KVM implementation in the Linux kernel did not properly restore the values of the Programmable Interrupt Timer (PIT). A user-assisted attacker in a KVM guest could cause a denial of service in the host (system crash). (CVE-2015-7513) Sasha Levin discovered that the Reliable Datagram Sockets (RDS) implementation in the Linux kernel had a race condition when checking whether a socket was bound or not. A local attacker could use this to cause a denial of service (system crash). (CVE-2015-7990) It was discovered that the Btrfs implementation in the Linux kernel incorrectly handled compressed inline extants on truncation. A local attacker could use this to expose sensitive information. (CVE-2015-8374)

Affected Systems

ubuntu•linux
< 3.13.0-77.121

USN-2887-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)