PT-2017-4150 · Linux+5 · Linux Kernel+5

Mohamed Ghannam

·

Published

2017-12-05

·

Updated

2024-06-15

·

CVE-2017-8824

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.14.3
Description The issue is related to the dccp disconnect function in the Linux kernel, which allows local users to gain privileges or cause a denial of service due to a use-after-free error. This can occur via an AF UNSPEC connect system call during the DCCP LISTEN state. The vulnerability is also associated with the use of memory after it has been freed, potentially allowing an attacker to execute arbitrary code.
Recommendations For Linux kernel versions prior to 4.14.3, update to a version 4.14.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the dccp disconnect function until a patch is available.

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2017-2752
ALT-PU-2017-2753
ALT-PU-2017-2771
ALT-PU-2018-1251
ALT-PU-2018-1253
ALT-PU-2018-1254
ALT-PU-2018-1465
ALT-PU-2018-1526
ALT-PU-2018-1527
ALT-PU-2018-1528
BDU:2021-04144
CESA-2018_1062
CESA-2018_1319
CVE-2017-8824
DLA-1200-1
DSA-4073-1
DSA-4082-1
MGASA-2018-0106
MGASA-2018-0107
MGASA-2018-0126
OPENSUSE-SU-2017_3358-1
OPENSUSE-SU-2017_3359-1
OPENSUSE-SU-2024:10728-1
OPENSUSE-SU-2024:13704-1
RHSA-2018:0399
RHSA-2018:0676
RHSA-2018:1062
RHSA-2018:1130
RHSA-2018:1170
RHSA-2018:1216
RHSA-2018:1319
RHSA-2018:3822
RHSA-2018_0676
RHSA-2018_1062
RHSA-2018_1319
RHSA-2018_3822
SUSE-SU-2017:3398-1
SUSE-SU-2017:3410-1
SUSE-SU-2018:0011-1
SUSE-SU-2018:0031-1
SUSE-SU-2018:0040-1
SUSE-SU-2018:0115-1
SUSE-SU-2018:0180-1
SUSE-SU-2018:0213-1
USN-3581-1
USN-3581-2
USN-3581-3
USN-3582-1
USN-3582-2
USN-3583-1
USN-3583-2

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu