Lucene search

K
cve[email protected]CVE-2017-16939
HistoryNov 24, 2017 - 10:29 a.m.

CVE-2017-16939

2017-11-2410:29:00
CWE-416
web.nvd.nist.gov
221
xfrm
linux kernel
cve-2017-16939
privilege escalation
denial of service
nvd
vulnerability
so_rcvbuf
use-after-free

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0

Percentile

0.4%

The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.

Affected configurations

NVD
Node
linuxlinux_kernelRange2.6.283.2.97
OR
linuxlinux_kernelRange3.33.16.52
OR
linuxlinux_kernelRange3.173.18.86
OR
linuxlinux_kernelRange3.194.1.48
OR
linuxlinux_kernelRange4.24.4.104
OR
linuxlinux_kernelRange4.54.9.60
OR
linuxlinux_kernelRange4.104.13.11
Node
debiandebian_linuxMatch8.0

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0

Percentile

0.4%