[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-3161-2":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":42,"duplicates":43,"related":44,"reserved_at":9,"published_at":52,"modified_at":53,"state":9,"summary":54,"references_raw":56,"kevs":92,"epss":9,"epss_history":93,"metrics":94,"affected":95},"USN-3161-2","linux-lts-xenial vulnerabilities\n\nUSN-3161-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04\nLTS. This update provides the corresponding updates for the Linux\nHardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu\n14.04 LTS.\n\nTilman Schmidt and Sasha Levin discovered a use-after-free condition in the\nTTY implementation in the Linux kernel. A local attacker could use this to\nexpose sensitive information (kernel memory). (CVE-2015-8964)\n\nIt was discovered that the Video For Linux Two (v4l2) implementation in the\nLinux kernel did not properly handle multiple planes when processing a\nVIDIOC_DQBUF ioctl(). A local attacker could use this to cause a denial of\nservice (system crash) or possibly execute arbitrary code. (CVE-2016-4568)\n\nCAI Qian discovered that shared bind mounts in a mount namespace\nexponentially added entries without restriction to the Linux kernel's mount\ntable. A local attacker could use this to cause a denial of service (system\ncrash). (CVE-2016-6213)\n\nIt was discovered that the KVM implementation for x86/x86_64 in the Linux\nkernel could dereference a null pointer. An attacker in a guest virtual\nmachine could use this to cause a denial of service (system crash) in the\nKVM host. (CVE-2016-8630)\n\nEyal Itkin discovered that the IP over IEEE 1394 (FireWire) implementation\nin the Linux kernel contained a buffer overflow when handling fragmented\npackets. A remote attacker could use this to possibly execute arbitrary\ncode with administrative privileges. (CVE-2016-8633)\n\nMarco Grassi discovered that the TCP implementation in the Linux kernel\nmishandles socket buffer (skb) truncation. A local attacker could use this\nto cause a denial of service (system crash). (CVE-2016-8645)\n\nAndrey Konovalov discovered that the SCTP implementation in the Linux\nkernel improperly handled validation of incoming data. A remote attacker\ncould use this to cause a denial of service (system crash). (CVE-2016-9555)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40],{"_key":15},"CVE-2015-8964",{"_key":17},"CVE-2016-4568",{"_key":19},"CVE-2016-6213",{"_key":21},"CVE-2016-8630",{"_key":23},"CVE-2016-8633",{"_key":25},"CVE-2016-8645",{"_key":27},"CVE-2016-9555",{"_key":29},"UBUNTU-CVE-2015-8964",{"_key":31},"UBUNTU-CVE-2016-4568",{"_key":33},"UBUNTU-CVE-2016-6213",{"_key":35},"UBUNTU-CVE-2016-8630",{"_key":37},"UBUNTU-CVE-2016-8633",{"_key":39},"UBUNTU-CVE-2016-8645",{"_key":41},"UBUNTU-CVE-2016-9555",[],[],[45,46,47,48,49,50,51],{"_key":31},{"_key":35},{"_key":29},{"_key":33},{"_key":37},{"_key":39},{"_key":41},"2016-12-20T21:17:37.731386Z","2026-02-04T04:26:10.431750Z",{"cisa_kev":55,"cisa_ransomware":55,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[57,63,68,72,76,80,84,88],{"url":58,"sources":59,"tags":61},"https://ubuntu.com/security/notices/USN-3161-2",[60],"osv_ubuntu",[62],"Advisory",{"url":64,"sources":65,"tags":66},"https://ubuntu.com/security/CVE-2015-8964",[60],[67],"REPORT",{"url":69,"sources":70,"tags":71},"https://ubuntu.com/security/CVE-2016-4568",[60],[67],{"url":73,"sources":74,"tags":75},"https://ubuntu.com/security/CVE-2016-6213",[60],[67],{"url":77,"sources":78,"tags":79},"https://ubuntu.com/security/CVE-2016-8630",[60],[67],{"url":81,"sources":82,"tags":83},"https://ubuntu.com/security/CVE-2016-8633",[60],[67],{"url":85,"sources":86,"tags":87},"https://ubuntu.com/security/CVE-2016-8645",[60],[67],{"url":89,"sources":90,"tags":91},"https://ubuntu.com/security/CVE-2016-9555",[60],[67],[],[],[],[96],{"ecosystem":97,"name":98,"vendor":99,"product":98,"cpe_part":9,"purl_type":100,"purl_namespace":99,"purl_name":98,"source":9,"versions":101},"Ubuntu","linux-lts-xenial","ubuntu","deb",[102],{"version":103,"is_range":104,"range_type":105,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},"lt4_4_0_57_78~14_04_1",true,"ecosystem","4.4.0-57.78~14.04.1","excluding"]