- Ubuntu 14.04
Ben Serebrin discovered that the KVM hypervisor implementation in the Linux kernel did not properly catch Alignment Check exceptions. An attacker in a guest virtual machine could use this to cause a denial of service (system crash) in the host OS.
The Cloud Foundry project released a BOSH stemcell version 3130 that has the patched version of the Linux kernel.
Affected Products and Versions
Severity is high unless otherwise noted.
- All versions of Cloud Foundry BOSH stemcells prior to 3130 have versions of the kernel vulnerable to USN-2806-1.
Users of affected versions should apply the following mitigation:
- The Cloud Foundry project recommends that Cloud Foundry deployments run with BOSH stemcells 3130 or later versions.