30 matches found
kernel: scsi: Stack-based buffer overflow in sg_ioctl function
The sgioctl function in drivers/scsi/sg.c in the Linux kernel allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impacts via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the sgwrite functio...
kernel: scsi: Stack-based buffer overflow in sg_ioctl function
The sgioctl function in drivers/scsi/sg.c in the Linux kernel allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impacts via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the sgwrite functio...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7618: crypto/ahash.c in the Linux kernel allowed attackers to cause a denial of service API operation calling its own callback, and infinite recursion by triggeri...
CVE-2017-7187
The sgioctl function in drivers/scsi/sg.c in the Linux kernel allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impacts via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the sgwrite functio...
CVE-2017-7187
The sgioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the...
Stack overflow
The sgioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the...
CVE-2017-7187
The sgioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the...
CVE-2017-7187
The CVE-2017-7187 issue affects the Linux kernel sg_ioctl in drivers/scsi/sg.c, where a large SG_NEXT_CMD_LEN ioctl can trigger a stack-based buffer overflow, leading to a DoS or potentially other impact via out-of-bounds writes in sg_write. Descriptions across connected sources (CNVD-2017-03858)...
CVE-2017-7187
The sgioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the...
UBUNTU-CVE-2017-7187
The sgioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a large command size in an SGNEXTCMDLEN ioctl call, leading to out-of-bounds write access in the...