CVE-2017-1000111

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2017-1000111
Linux kernel: heap out-of-bounds in AF_PACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes socket state may race with safety checks in packet_set_ring. Previously with PACKET_VERSION. This time with PACKET_RESERVE. The solution is similar: lock the socket for the update. This issue may be exploitable, we did not investigate further. As this issue affects PF_PACKET sockets, it requires CAP_NET_RAW in the process namespace. But note that with user namespaces enabled, any process can create a namespace in which it has CAP_NET_RAW.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.debian.org/security/2017/dsa-3981 Third Party Advisory
http://www.securityfocus.com/bid/100267 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039132 Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2017:2918 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2930 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2931 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3200 Third Party Advisory
https://access.redhat.com/security/cve/cve-2017-1000111 Third Party Advisory
http://www.debian.org/security/2017/dsa-3981 Third Party Advisory
http://www.securityfocus.com/bid/100267 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039132 Third Party Advisory VDB Entry
https://access.redhat.com/errata/RHSA-2017:2918 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2930 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2931 Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3200 Third Party Advisory
https://access.redhat.com/security/cve/cve-2017-1000111 Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
History

21 Nov 2024, 03:04

Type Values Removed Values Added
References () http://www.debian.org/security/2017/dsa-3981 - Third Party Advisory () http://www.debian.org/security/2017/dsa-3981 - Third Party Advisory
References () http://www.securityfocus.com/bid/100267 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/100267 - Third Party Advisory, VDB Entry
References () http://www.securitytracker.com/id/1039132 - Third Party Advisory, VDB Entry () http://www.securitytracker.com/id/1039132 - Third Party Advisory, VDB Entry
References () https://access.redhat.com/errata/RHSA-2017:2918 - Third Party Advisory () https://access.redhat.com/errata/RHSA-2017:2918 - Third Party Advisory
References () https://access.redhat.com/errata/RHSA-2017:2930 - Third Party Advisory () https://access.redhat.com/errata/RHSA-2017:2930 - Third Party Advisory
References () https://access.redhat.com/errata/RHSA-2017:2931 - Third Party Advisory () https://access.redhat.com/errata/RHSA-2017:2931 - Third Party Advisory
References () https://access.redhat.com/errata/RHSA-2017:3200 - Third Party Advisory () https://access.redhat.com/errata/RHSA-2017:3200 - Third Party Advisory
References () https://access.redhat.com/security/cve/cve-2017-1000111 - Third Party Advisory () https://access.redhat.com/security/cve/cve-2017-1000111 - Third Party Advisory
Information

Published : 2017-10-05 01:29

Updated : 2024-11-21 03:04

NVD link : CVE-2017-1000111

Mitre link : CVE-2017-1000111

CVE.ORG link : CVE-2017-1000111

JSON object : View

Products Affected

redhat

  • enterprise_linux_workstation
  • enterprise_linux_server_tus
  • enterprise_linux_server
  • enterprise_linux_server_eus
  • enterprise_linux_desktop
  • enterprise_linux
  • enterprise_linux_server_aus

debian

  • debian_linux

linux

  • linux_kernel
CWE
CWE-787

Out-of-bounds Write


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024