Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2017-18017
HistoryJan 03, 2018 - 12:00 a.m.

CVE-2017-18017

2018-01-0300:00:00
ubuntu.com
ubuntu.com
23

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.954 High

EPSS

Percentile

99.3%

JSON

The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux
kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to
cause a denial of service (use-after-free and memory corruption) or
possibly have unspecified other impact by leveraging the presence of
xt_TCPMSS in an iptables action.

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchlinux< 3.13.0-142.191UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-89.112UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1028.37UNKNOWN
ubuntu16.04noarchlinux-gcp< 4.13.0-1002.5UNKNOWN
ubuntu16.04noarchlinux-gke< 4.4.0-1024.24UNKNOWN
ubuntu16.04noarchlinux-hwe< 4.13.0-26.29~16.04.2UNKNOWN
ubuntu18.04noarchlinux-hwe-edge< 4.18.0-8.9~18.04.1UNKNOWN
ubuntu16.04noarchlinux-hwe-edge< 4.13.0-26.29~16.04.2UNKNOWN
ubuntu14.04noarchlinux-lts-xenial< 4.4.0-89.112~14.04.1UNKNOWN
ubuntu16.04noarchlinux-raspi2< 4.4.0-1067.75UNKNOWN
Rows per page:
1-10 of 111

Related

osv 3
f5 1
arista 1
virtuozzo 4
debiancve 1
veracode 1
nessus 35
cve 1
prion 1
redhatcve 1
redhat 6
oraclelinux 6
ibm 8
openvas 8
photon 1
centos 2
suse 10
symantec 1
ubuntu 2
debian 3
osv
osv
CVE-2017-18017
2018-01-03 06:29:00
linux - security update
2018-04-30 00:00:00
linux - security update
2018-05-01 00:00:00
f5
f5
K18352029 : Linux kernel vulnerability CVE-2017-18017
2018-01-16 00:00:00
arista
arista
Security Advisory 0034
2018-05-02 00:00:00
virtuozzo
virtuozzo
Kernel security update: CVE-2017-18017; Virtuozzo ReadyKernel patch 42.0 for Virtuozzo 7.0.4, 7.0.4 HF3, 7.0.5, 7.0.6, and 7.0.6 HF3
2018-01-12 00:00:00
Kernel security update: CVE-2017-18017 and other; new kernel 2.6.32-042stab128.2 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2018-03-26 00:00:00
Kernel security update: CVE-2017-18017 and other; new kernel 2.6.32-042stab128.2, Virtuozzo 6.0 Update 12 Hotfix 22 (6.0.12-3701)
2018-03-26 00:00:00
debiancve
debiancve
CVE-2017-18017
2018-01-03 06:29:00
veracode
veracode
Denial Of Service (DoS)
2019-03-27 04:35:00
nessus
nessus
Arista Networks tcpmss_mangle_packet DoS (SA0034)
2020-02-24 00:00:00
Virtuozzo 7 : readykernel-patch (VZA-2018-005)
2018-01-16 00:00:00
RHEL 7 : kernel (RHSA-2018:1737) (Spectre)
2018-05-30 00:00:00
cve
cve
CVE-2017-18017
2018-01-03 06:29:00
prion
prion
Memory corruption
2018-01-03 06:29:00
redhatcve
redhatcve
CVE-2017-18017
2018-01-04 16:19:48
redhat
redhat
(RHSA-2018:1737) Important: kernel security and bug fix update
2018-05-29 17:59:32
(RHSA-2018:1170) Important: kernel-rt security and bug fix update
2018-04-17 14:55:13
(RHSA-2018:1319) Important: kernel security and bug fix update
2018-05-08 17:59:26
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-11-08 00:00:00
kernel security and bug fix update
2018-05-08 00:00:00
Unbreakable Enterprise kernel security update
2018-07-10 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in the Linux kernel affect the IBM FlashSystem models V840 and V9000
2019-11-11 15:20:37
Security Bulletin: Multiple Vulnerabilities in the Linux kernel affect the IBM FlashSystem 840 and 900
2023-02-18 01:45:50
Security Bulletin: Multiple vulnerabilities in the Linux kernel affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2023-03-29 01:48:02
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1234)
2020-01-23 00:00:00
CentOS Update for kernel CESA-2018:1319 centos6
2018-05-10 00:00:00
openSUSE: Security Advisory for kernel (openSUSE-SU-2018:0408-1)
2018-02-10 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2017-0055
2017-07-25 00:00:00
centos
centos
kernel, perf, python security update
2018-05-10 01:00:09
kernel security update
2018-04-27 05:53:39
suse
suse
Security update for the Linux Kernel (important)
2018-03-12 12:08:22
Security update for the Linux Kernel (important)
2018-02-07 18:08:53
Security update for the Linux Kernel (important)
2018-02-09 15:09:34
symantec
symantec
Linux Kernel Aug 2017 - Sep 2018 Vulnerabilities
2018-11-28 08:01:01
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2018-02-23 00:00:00
Linux kernel vulnerabilities
2018-02-23 00:00:00
debian
debian
[SECURITY] [DLA 1369-1] linux security update
2018-05-02 20:58:29
[SECURITY] [DSA 4187-1] linux security update
2018-05-01 17:12:02
[SECURITY] [DSA 4187-1] linux security update
2018-05-01 17:12:02

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.954 High

EPSS

Percentile

99.3%

JSON
Related for UB:CVE-2017-18017
osv3f51arista1virtuozzo4debiancve1veracode1nessus35cve1prion1redhatcve1redhat6oraclelinux6ibm8openvas8photon1centos2suse10symantec1ubuntu2debian3