Veracode Vulnerability DatabaseVERACODE:13548Denial Of Service (DoS)
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
kernel is vulnerable to privilege escalation. A use-after-free in the tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c allows remote attackers to cause a denial of service by leveraging the presence of xt_TCPMSS in an iptables action. The successful exploit of the vulnerable can potentially lead to privilege escalation as well.
References
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2638fd0f92d4397884fd991d8f4925cb3f081901
lists.opensuse.org/opensuse-security-announce/2018-02/msg00008.html
lists.opensuse.org/opensuse-security-announce/2018-02/msg00013.html
lists.opensuse.org/opensuse-security-announce/2018-02/msg00015.html
lists.opensuse.org/opensuse-security-announce/2018-02/msg00038.html
lists.opensuse.org/opensuse-security-announce/2018-02/msg00047.html
lists.opensuse.org/opensuse-security-announce/2018-03/msg00030.html
lists.opensuse.org/opensuse-security-announce/2018-03/msg00067.html
lists.opensuse.org/opensuse-security-announce/2018-03/msg00070.html
lists.opensuse.org/opensuse-security-announce/2018-03/msg00072.html
lists.opensuse.org/opensuse-security-announce/2018-04/msg00014.html
patchwork.ozlabs.org/patch/746618/
www.securityfocus.com/bid/102367
www.ubuntu.com/usn/USN-3583-1
www.ubuntu.com/usn/USN-3583-2
access.redhat.com/errata/RHSA-2018:0676
access.redhat.com/errata/RHSA-2018:1062
access.redhat.com/errata/RHSA-2018:1130
access.redhat.com/errata/RHSA-2018:1170
access.redhat.com/errata/RHSA-2018:1319
access.redhat.com/errata/RHSA-2018:1737
access.redhat.com/security/cve/cve-2017-18017
bugs.launchpad.net/ubuntu/+source/linux/+bug/1739765
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2638fd0f92d4397884fd991d8f4925cb3f081901
github.com/torvalds/linux/commit/2638fd0f92d4397884fd991d8f4925cb3f081901
help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
lists.debian.org/debian-lts-announce/2018/05/msg00000.html
lkml.org/lkml/2017/4/2/13
support.f5.com/csp/article/K18352029
usn.ubuntu.com/3583-1/
usn.ubuntu.com/3583-2/
www.arista.com/en/support/advisories-notices/security-advisories/4577-security-advisory-34
www.debian.org/security/2018/dsa-4187
www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.36
Related
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C