CVE-2017-1000111

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a heap out-of-bounds condition in AF PACKET sockets, similar to a previously disclosed problem. It involves a race condition between a socket option that changes socket state and safety checks in packet set ring, specifically with PACKET RESERVE. This could potentially be exploitable, although further investigation was not conducted. The issue affects PF PACKET sockets and requires the CAP NET RAW capability in the process namespace. However, with user namespaces enabled, any process can create a namespace where it has CAP NET RAW, potentially increasing the exploitability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-264

Related Identifiers

ALT-PU-2017-2047

ALT-PU-2017-2048

BDU:2017-02488

CESA-2017_2930

CESA-2017_3200

CVE-2017-1000111

DLA-1099-1

DSA-3981-1

OPENSUSE-SU-2017_2169-1

OPENSUSE-SU-2017_2171-1

RHSA-2017:2918

RHSA-2017:2930

RHSA-2017:2931

RHSA-2017:3200

RHSA-2017_2930

RHSA-2017_2931

RHSA-2017_3200

SUSE-SU-2017:2131-1

SUSE-SU-2017:2142-1

SUSE-SU-2017:2150-1

SUSE-SU-2017:2286-1

SUSE-SU-2017:2956-1

USN-3384-1

USN-3384-2

USN-3385-1

USN-3385-2

USN-3386-1

USN-3386-2

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

Suse

Ubuntu

CVE-2017-1000111

Weakness Enumeration

Related Identifiers

Affected Products

References · 277