PT-2017-13254 · Linux+5 · Linux Kernel+5

Idaifish

·

Publicado

2017-07-12

·

Atualizado

2018-07-13

·

CVE-2017-14106

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.12
Description The issue allows local users to cause a denial of service, resulting in a system crash due to a divide-by-zero error in the tcp select window function. This occurs when a disconnect is triggered within a certain tcp recvmsg code path.
Recommendations For Linux kernel versions prior to 4.12, update to version 4.12 or later to resolve the issue.

Correção

DoS

Divide By Zero

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-369

Identificadores relacionados

ALT-PU-2017-1854
ALT-PU-2018-1991
CESA-2017_2930
CESA-2017_3200
CVE-2017-14106
DLA-1099-1
DSA-3981-1
MGASA-2017-0381
MGASA-2017-0383
MGASA-2017-0384
MGASA-2017-0386
MGASA-2017-0387
MGASA-2017-0388
OPENSUSE-SU-2017_2494-1
OPENSUSE-SU-2017_2495-1
RHSA-2017:2918
RHSA-2017:2930
RHSA-2017:2931
RHSA-2017:3200
RHSA-2017_2930
RHSA-2017_2931
RHSA-2017_3200
RHSA-2018:2172
RHSA-2018_2172
SUSE-SU-2017:2847-1
SUSE-SU-2017:2869-1
SUSE-SU-2017:2908-1
SUSE-SU-2017:2920-1
SUSE-SU-2017:2956-1
SUSE-SU-2018:0011-1
SUSE-SU-2018:0040-1
SUSE-SU-2018:0180-1
USN-3443-1
USN-3443-2
USN-3443-3
USN-3444-1
USN-3444-2
USN-3445-1
USN-3445-2

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu