---

Five New Linux Kernel Vulnerabilities Patched in Ubuntu 16.10 for Raspberry Pi 2

The first security flaw (CVE-2016-10147) was discovered by Mikulas Patocka in Linux kernel’s mcryptd, the asynchronous multibuffer cryptographic daemon, which appears to incorrectly handle incompatible algorithms. This could allow a local attacker to crash the system by causing a denial of service. The second vulnerability (CVE-2016-10150) is a use-after-free discovered in Linux kernel’s KVM (Kernel-based Virtual Machine) subsystem when creating devices, which could have allowed a local attacker to crash the system via a denial of service.