CVE-2017-1000364 kernel fix brake user-space programs

John Johansen john.johansen at canonical.com
Fri Jun 23 23:28:30 UTC 2017 

On 06/23/2017 12:52 PM, Nrbrtx wrote:
> Dear Ubuntu developers!
> 
> I can't understand how this happen, but your latest kernel upgrade broke many user-space applications.
> 
> For me this process was started from Scilab. I can't use it with new kernels (linux-image-3.13.0-121-generic on 14.04; linux-image-4.4.0-81-generic on 16.04).
> So I reported bug to launchpad - https://bugs.launchpad.net/bugs/1699892 .
> 
> Scilab users ask their developers for the fix, but the root of the problem is the kernel (see http://bugzilla.scilab.org/show_bug.cgi?id=15141, http://bugzilla.scilab.org/show_bug.cgi?id=15145, http://bugzilla.scilab.org/show_bug.cgi?id=15192,http://bugzilla.scilab.org/show_bug.cgi?id=15194, http://bugzilla.scilab.org/show_bug.cgi?id=15195).
> 
> After some digging I discovered that other apps are affected too - see comments on other bug page ( https://bugs.launchpad.net/bugs/1698919 ). The list contain the following programs:
> * Oracle Java Plugin (see https://bugs.launchpad.net/bugs/1699772 )
> * Scilab at least in Trusty and Xenial (see
> https://bugs.launchpad.net/bugs/1699892 )
> * LPCxpresso (see https://community.nxp.com/thread/453939 )
> * RMongo (see https://stackoverflow.com/a/44699417 )
> * Ubiquity UniFi (see
> https://community.ubnt.com/t5/UniFi-Wireless/UniFi-Controller-failed-after-dist-upgrade/td-p/1967779
> )
> * Eclipse (see
> https://askubuntu.com/questions/927746/eclipse-crashes-with-linux-kernel-4-4-0-81-generic )
> 
> Debian 7, 8 and 9 are affected too (see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865549 and http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865672 ).
> 
> It is not OK.
> Do you plan to revert this security patch?
> Problem may have wider spread, than detected now.
> 

The kernel team is aware of the issue, and will be releasing updated
kernels when they are available.

There are currently no plans to revert the kernel patch until the
replacement patches are ready due to the nature of the security
vulnerability. If the regression is preventing you from using the
applications you require then we currently recommend you reboot into
the previous kernel.

More information about the Ubuntu-devel-discuss mailing list