Debian GNU/Linux 9 "Stretch" Gets New Kernel Patch to Fix Two Security Flaws

In Summary :

The Debian Project published a new linux security advisory to inform users of the Debian GNU/Linux 9 "Stretch" operating system series about a new kernel security patch that fixes two vulnerabilities.

Coming just a week after the latest major kernel security update for Debian GNU/Linux 9 "Stretch," the new Linux kernel security patch is here to address a flaw (CVE-2018-15471) discovered by Google Project Zero's Felix Wilhelm in the hash handling of Linux kernel's xen-netback module, which could result in information leaks, privilege escalation, as well as denial of service.

"Felix Wilhelm of Google Project Zero discovered a flaw in the hash handling of the xen-netback Linux kernel module. A malicious or buggy frontend may cause the (usually privileged) backend to make out of bounds memory accesses, potentially resulting in privilege escalation, denial of service, or information leaks," reads the security advisory published by Salvatore Bonaccorso. [...]

kindly refer the following link as follow up :
https://news.softpedia.com/news/debian-gnu-linux-9-stretch-gets-new-kernel-patch-to-fix-two-security-flaws-523147.shtml