PT-2018-5776 · Linux+5 · Linux Kernel+5

Published

2018-01-09

Updated

2024-06-15

CVE-2017-15129

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.14.11

Description: A use-after-free issue was found in the network namespaces code. The get net ns by id() function in net/core/net namespace.c does not check for the net::count value after finding a peer network in netns ids idr, potentially leading to double free and memory corruption. This could allow an unprivileged local user to induce kernel memory corruption, causing a system crash. While privilege escalation is thought to be unlikely, it cannot be fully ruled out due to the nature of the flaw.

Recommendations: For Linux kernel versions prior to 4.14.11, update to version 4.14.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the get net ns by id() function until a patch is available.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALT-PU-2018-1016

ALT-PU-2018-1991

CESA-2018_1062

CVE-2017-15129

MGASA-2018-0073

MGASA-2018-0074

MGASA-2018-0075

MGASA-2018-0076

MGASA-2018-0077

MGASA-2018-0078

MGASA-2018-0127

OPENSUSE-SU-2018_0408-1

OPENSUSE-SU-2024:10728-1

OPENSUSE-SU-2024:13704-1

RHSA-2018:0654

RHSA-2018:0676

RHSA-2018:1062

RHSA-2018_0676

RHSA-2018_1062

RHSA-2019:1946

SUSE-SU-2018:0383-1

SUSE-SU-2018:0416-1

SUSE-SU-2018:0482-1

SUSE-SU-2018:0986-1

USN-3617-1

USN-3617-2

USN-3617-3

USN-3619-1

USN-3619-2

USN-3632-1

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

Suse

Ubuntu

PT-2018-5776 · Linux+5 · Linux Kernel+5

CVE-2017-15129

Weakness Enumeration

Related Identifiers

Affected Products

References · 534