Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2017-8242

HistoryJun 13, 2017 - 8:29 p.m.

CVE-2017-8242

2017-06-1320:29:01

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

31.4%

JSON

In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write.

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 6.1.106-3linux_6.1.106-3_all.deb
Debian11alllinux< 5.10.223-1linux_5.10.223-1_all.deb
Debian999alllinux< 6.10.9-1linux_6.10.9-1_all.deb
Debian13alllinux< 6.10.9-1linux_6.10.9-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 6.1.106-3	linux_6.1.106-3_all.deb
Debian	11	all	linux	< 5.10.223-1	linux_5.10.223-1_all.deb
Debian	999	all	linux	< 6.10.9-1	linux_6.10.9-1_all.deb
Debian	13	all	linux	< 6.10.9-1	linux_6.10.9-1_all.deb

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

31.4%

JSON

Related for DEBIANCVE:CVE-2017-8242