2 matches found
UBUNTU-CVE-2017-7184
The xfrmreplayverifylen function in net/xfrm/xfrmuser.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRMMSGNEWAE update, which allows local users to obtain root privileges or cause a denial of service heap-based out-of-bounds access by leveraging the CAPNETADMI...
PT-2017-17563 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.10.6 Description: The issue allows local users to obtain root privileges or cause a denial of service heap-based out-of-bounds access by leveraging the CAP NET ADMIN capability. This can be achieved through th...