Debian GNU/Linux 9 “Stretch” Gets New Kernel Patch to Fix Two Security Flaws

Coming just a week after the latest major kernel security update for Debian GNU/Linux 9 “Stretch,” the new Linux kernel security patch is here to address a flaw (CVE-2018-15471) discovered by Google Project Zero’s Felix Wilhelm in the hash handling of Linux kernel’s xen-netback module, which could result in information leaks, privilege escalation, as well as denial of service. The new kernel security patch also addresses a privilege escalation flaw (CVE-2018-18021) discovered in Linux kerne’s Kernel-based Virtual Machine (KVM) subsystem on AArch64 (ARM64) architectures, which could let an attacker create a denial of service (hypervisor panic) or redirect the hypervisor flow of control with complete register control.