This bug was fixed in the package linux-aws-hwe - 4.15.0-1085.90~16.04.1
--------------- linux-aws-hwe (4.15.0-1085.90~16.04.1) xenial; urgency=medium
[ Ubuntu: 4.15.0-1085.90 ]
* CVE-2020-16119 - SAUCE: dccp: avoid double free of ccid on child socket * CVE-2020-16120 - Revert "UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading directories" - ovl: pass correct flags for opening real directory - ovl: switch to mounter creds in readdir - ovl: verify permissions in ovl_path_open()
-- Thadeu Lima de Souza Cascardo <email address hidden> Wed, 30 Sep 2020 08:43:46 -0300
This bug was fixed in the package linux-aws-hwe - 4.15.0- 1085.90~ 16.04.1
--------------- 1085.90~ 16.04.1) xenial; urgency=medium
linux-aws-hwe (4.15.0-
[ Ubuntu: 4.15.0-1085.90 ]
* CVE-2020-16119
- SAUCE: dccp: avoid double free of ccid on child socket
* CVE-2020-16120
- Revert "UBUNTU: SAUCE: overlayfs: ensure mounter privileges when reading
directories"
- ovl: pass correct flags for opening real directory
- ovl: switch to mounter creds in readdir
- ovl: verify permissions in ovl_path_open()
-- Thadeu Lima de Souza Cascardo <email address hidden> Wed, 30 Sep 2020 08:43:46 -0300