csaf_certbund - wid-sec-w-2025-0269

wid-sec-w-2025-0269

Vulnerability from csaf_certbund

Published

2017-08-10 22:00

Modified

2025-02-04 23:00

Summary

Linux Kernel: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar. Ubuntu Linux ist die Linux Distribution des Herstellers Canonical. SUSE Linux Enterprise Server ist eine Linux-Distribution bzw. Open Source Plattform. SUSE Linux Enterprise Desktop ist eine Linux-Distribution bzw. Open Source Plattform.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um beliebigen Programmcode mit Administratorrechten oder den Privilegien des angegriffenen Dienstes auszuführen oder einen Denial of Service Zustand herbeizuführen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.\r\nUbuntu Linux ist die Linux Distribution des Herstellers Canonical.\r\nSUSE Linux Enterprise Server ist eine Linux-Distribution bzw. Open Source Plattform.\r\nSUSE Linux Enterprise Desktop ist eine Linux-Distribution bzw. Open Source Plattform.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Linux Kernel ausnutzen, um beliebigen Programmcode mit Administratorrechten oder den Privilegien des angegriffenen Dienstes auszuf\u00fchren oder einen Denial of Service Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0269 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2025-0269.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0269 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0269"
      },
      {
        "category": "external",
        "summary": "OSS-SEC Mailing Liste vom 2017-08-10",
        "url": "http://seclists.org/oss-sec/2017/q3/279"
      },
      {
        "category": "external",
        "summary": "OSS-SEC Mailing Liste vom 2017-08-10",
        "url": "http://seclists.org/oss-sec/2017/q3/277"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-3386-2 vom 2017-08-10",
        "url": "https://usn.ubuntu.com/usn/usn-3386-2/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-3385-2 vom 2017-08-10",
        "url": "https://usn.ubuntu.com/usn/usn-3385-2/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-3384-2 vom 2017-08-10",
        "url": "https://usn.ubuntu.com/usn/usn-3384-2/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Announcement ID:SUSE-SU-2017:2131-1 vom 2017-08-10",
        "url": "https://www.suse.com/de-de/support/update/announcement/2017/suse-su-20172131-1/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2150-1 vom 2017-08-12",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172150-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2142-1 vom 2017-08-12",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172142-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2286-1 vom 2017-08-29",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172286-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2441-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172441-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2439-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172439-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2436-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172436-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2440-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172440-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2437-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172437-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2423-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172423-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2424-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172424-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2438-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172438-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2448-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172448-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2446-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172446-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2447-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172447-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2442-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172442-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2443-1 vom 2017-09-13",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172443-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2456-1 vom 2017-09-14",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172456-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2455-1 vom 2017-09-14",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172455-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2457-1 vom 2017-09-14",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172457-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2454-1 vom 2017-09-14",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172454-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2458-1 vom 2017-09-14",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172458-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2469-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172469-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2474-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172474-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2473-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172473-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2472-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172472-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2465-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172465-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2467-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172467-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2471-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172471-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2464-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172464-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2497-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172497-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2500-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172500-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2499-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172499-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2498-1 vom 2017-09-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172498-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2506-1 vom 2017-09-16",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172506-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2508-1 vom 2017-09-16",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172508-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2509-1 vom 2017-09-16",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172509-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2511-1 vom 2017-09-16",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172511-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2510-1 vom 2017-09-16",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172510-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2525-1 vom 2017-09-19",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172525-1.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-3981-1 vom 2017-09-20",
        "url": "https://lists.debian.org/debian-security-announce/2017/msg00243.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-3981 vom 2017-09-21",
        "url": "https://www.debian.org/security/2017/dsa-3981"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2438-2 vom 2017-10-02",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172438-2.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2694-1 vom 2017-10-10",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172694-1.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2931 vom 2017-10-19",
        "url": "https://access.redhat.com/errata/RHSA-2017:2931"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2930 vom 2017-10-19",
        "url": "https://access.redhat.com/errata/RHSA-2017:2930"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2918 vom 2017-10-19",
        "url": "https://access.redhat.com/errata/RHSA-2017:2918"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2775-1 vom 2017-10-19",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172775-1.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2791-1 vom 2017-10-20",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172791-1.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-2930 vom 2017-10-20",
        "url": "http://linux.oracle.com/errata/ELSA-2017-2930.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2813-1 vom 2017-10-21",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172813-1.html"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2017:2930 vom 2017-10-23",
        "url": "http://centos-announce.2309468.n4.nabble.com/CentOS-announce-CESA-2017-2930-Important-CentOS-7-kernel-Security-Update-tp4644813.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3633 vom 2017-10-25",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3633.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3632 vom 2017-10-25",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3632.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3631 vom 2017-10-25",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3631.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3635 vom 2017-11-02",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3635.html"
      },
      {
        "category": "external",
        "summary": "Oracle VM Security Advisory OVMSA-2017-0167",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2017-November/000798.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2956-1 vom 2017-11-09",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172956-1.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3200 vom 2017-11-16",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3200.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:3200 vom 2017-11-16",
        "url": "https://access.redhat.com/errata/RHSA-2017:3200"
      },
      {
        "category": "external",
        "summary": "CentOS Alert CESA-2017:3200 vom 2017-11-16",
        "url": "https://lwn.net/Alerts/739259/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3658 vom 2017-12-08",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3658.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:3265-1 vom 2017-12-12",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173265-1.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3659 vom 2017-12-13",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3659.html"
      },
      {
        "category": "external",
        "summary": "CXsecurity Advisory WLB-2018010018 vom 2018-01-03",
        "url": "https://cxsecurity.com/issue/WLB-2018010018"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-4021 vom 2018-01-28",
        "url": "http://linux.oracle.com/errata/ELSA-2018-4021.html"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K60250153 vom 2018-03-14",
        "url": "https://support.f5.com/csp/article/K60250153"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K44309215 vom 2018-03-14",
        "url": "https://support.f5.com/csp/article/K44309215"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-1854 vom 2018-06-26",
        "url": "http://linux.oracle.com/errata/ELSA-2018-1854.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2019:1932 vom 2019-07-30",
        "url": "https://access.redhat.com/errata/RHSA-2019:1932"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2019:1931 vom 2019-07-30",
        "url": "https://access.redhat.com/errata/RHSA-2019:1931"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2019:4159 vom 2019-12-10",
        "url": "https://access.redhat.com/errata/RHSA-2019:4159"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-071 vom 2025-02-05",
        "url": "https://www.dell.com/support/kbdoc/de-de/000281275/dsa-2025-071-security-update-for-dell-avamar-for-multiple-component-vulnerabilities"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2025-02-05T11:40:37.222+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2025-0269",
      "initial_release_date": "2017-08-10T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2017-08-10T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initial Release"
        },
        {
          "date": "2017-08-10T22:00:00.000+00:00",
          "number": "2",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2017-08-13T22:00:00.000+00:00",
          "number": "3",
          "summary": "New remediations available"
        },
        {
          "date": "2017-08-22T22:00:00.000+00:00",
          "number": "4",
          "summary": "Added references"
        },
        {
          "date": "2017-09-12T22:00:00.000+00:00",
          "number": "5",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-13T22:00:00.000+00:00",
          "number": "6",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-14T22:00:00.000+00:00",
          "number": "7",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-17T22:00:00.000+00:00",
          "number": "8",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-19T22:00:00.000+00:00",
          "number": "9",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-20T22:00:00.000+00:00",
          "number": "10",
          "summary": "New remediations available"
        },
        {
          "date": "2017-09-21T22:00:00.000+00:00",
          "number": "11",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-03T22:00:00.000+00:00",
          "number": "12",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-10T22:00:00.000+00:00",
          "number": "13",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-19T22:00:00.000+00:00",
          "number": "14",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-22T22:00:00.000+00:00",
          "number": "15",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-23T22:00:00.000+00:00",
          "number": "16",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-24T22:00:00.000+00:00",
          "number": "17",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-02T23:00:00.000+00:00",
          "number": "18",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-07T23:00:00.000+00:00",
          "number": "19",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-08T23:00:00.000+00:00",
          "number": "20",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-15T23:00:00.000+00:00",
          "number": "21",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-16T23:00:00.000+00:00",
          "number": "22",
          "summary": "New remediations available"
        },
        {
          "date": "2017-12-10T23:00:00.000+00:00",
          "number": "23",
          "summary": "New remediations available"
        },
        {
          "date": "2017-12-11T23:00:00.000+00:00",
          "number": "24",
          "summary": "New remediations available"
        },
        {
          "date": "2017-12-13T23:00:00.000+00:00",
          "number": "25",
          "summary": "New remediations available"
        },
        {
          "date": "2018-01-03T23:00:00.000+00:00",
          "number": "26",
          "summary": "poc added"
        },
        {
          "date": "2018-01-03T23:00:00.000+00:00",
          "number": "27",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2018-01-28T23:00:00.000+00:00",
          "number": "28",
          "summary": "New remediations available"
        },
        {
          "date": "2018-01-28T23:00:00.000+00:00",
          "number": "29",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2018-03-14T23:00:00.000+00:00",
          "number": "30",
          "summary": "New remediations available"
        },
        {
          "date": "2018-03-14T23:00:00.000+00:00",
          "number": "31",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2018-03-14T23:00:00.000+00:00",
          "number": "32",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2018-06-26T22:00:00.000+00:00",
          "number": "33",
          "summary": "New remediations available"
        },
        {
          "date": "2019-07-29T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2019-12-09T23:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-02-04T23:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "36"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c19.12",
                "product": {
                  "name": "Dell Avamar \u003c19.12",
                  "product_id": "T040818"
                }
              },
              {
                "category": "product_version",
                "name": "19.12",
                "product": {
                  "name": "Dell Avamar 19.12",
                  "product_id": "T040818-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:dell:avamar:19.12"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Avamar"
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "6368",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12-SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12-SP2",
                  "product_id": "T010561",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:linux_enterprise_desktop:12-sp2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Enterprise Desktop"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12-SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12-SP2",
                  "product_id": "T008982",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:linux_enterprise_server:12-sp2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Enterprise Server"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "12.04 LTS",
                "product": {
                  "name": "Ubuntu Linux 12.04 LTS",
                  "product_id": "T010558",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:canonical:ubuntu_linux:12.04_lts"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "14.04 LTS",
                "product": {
                  "name": "Ubuntu Linux 14.04 LTS",
                  "product_id": "T010559",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:canonical:ubuntu_linux:14.04_lts"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "16.04 LTS",
                "product": {
                  "name": "Ubuntu Linux 16.04 LTS",
                  "product_id": "T010560",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:canonical:ubuntu_linux:16.04_lts"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux"
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000111",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Race Condition Schwachstelle im Linux Kernel. Ein lokal angemeldeter, unprivilegierter Angreifer kann diese Schwachstelle in [net/packet/af_packet.c] ausnutzen, um einen Denial of Service zu verursachen oder beliebigen Code mit administrativen Privilegien zur Ausf\u00fchrung zu bringen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T010558",
          "T040818",
          "T010559",
          "2951",
          "T002207",
          "67646",
          "6368",
          "T010561",
          "T010560",
          "1727",
          "T004914",
          "T008982"
        ]
      },
      "release_date": "2017-08-10T22:00:00.000+00:00",
      "title": "CVE-2017-1000111"
    },
    {
      "cve": "CVE-2017-1000112",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Linux Kernel. Diese Schwachstelle besteht in [net/ipv4/ip_output.c] und wird durch eine Race Condition in der UDP Fragmentation Offload (UFO) verursacht. Ein lokaler, authentifizierter Angreifer kann die Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren oder beliebigen Code auszuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T010558",
          "T040818",
          "T010559",
          "2951",
          "T002207",
          "67646",
          "6368",
          "T010561",
          "T010560",
          "1727",
          "T004914",
          "T008982"
        ]
      },
      "release_date": "2017-08-10T22:00:00.000+00:00",
      "title": "CVE-2017-1000112"
    }
  ]
}

CVE-2017-1000112 (GCVE-0-2017-1000112)

Vulnerability from cvelistv5

Published

2017-10-04 01:00

Modified

2024-08-05 21:53

Severity ?

CWE

Summary

Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from UFO to non-UFO one, which leads to a memory corruption. In case UFO packet lengths exceeds MTU, copy = maxfraglen - skb->len becomes negative on the non-UFO path and the branch to allocate new skb is taken. This triggers fragmentation and computation of fraggap = skb_prev->len - maxfraglen. Fraggap can exceed MTU, causing copy = datalen - transhdrlen - fraggap to become negative. Subsequently skb_copy_and_csum_bits() writes out-of-bounds. A similar issue is present in IPv6 code. The bug was introduced in e89e9cf539a2 ("[IPv4/IPv6]: UFO Scatter-gather approach") on Oct 18 2005.

References

►

URL

Tags

	http://seclists.org/oss-sec/2017/q3/277	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2017:3200	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/100262	vdb-entry, x_refsource_BID
	https://access.redhat.com/errata/RHSA-2017:2918	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2931	vendor-advisory, x_refsource_REDHAT
	http://www.debian.org/security/2017/dsa-3981	vendor-advisory, x_refsource_DEBIAN
	https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112	x_refsource_MISC
	http://www.securitytracker.com/id/1039162	vdb-entry, x_refsource_SECTRACK
	https://www.exploit-db.com/exploits/45147/	exploit, x_refsource_EXPLOIT-DB
	https://access.redhat.com/errata/RHSA-2017:2930	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:1932	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:1931	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2019:4159	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:53:06.785Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[oss-security] 20170810 Linux kernel: CVE-2017-1000112: Exploitable memory corruption due to UFO to non-UFO path switch",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://seclists.org/oss-sec/2017/q3/277"
          },
          {
            "name": "RHSA-2017:3200",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:3200"
          },
          {
            "name": "100262",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/100262"
          },
          {
            "name": "RHSA-2017:2918",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2918"
          },
          {
            "name": "RHSA-2017:2931",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2931"
          },
          {
            "name": "DSA-3981",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2017/dsa-3981"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112"
          },
          {
            "name": "1039162",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039162"
          },
          {
            "name": "45147",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45147/"
          },
          {
            "name": "RHSA-2017:2930",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2930"
          },
          {
            "name": "RHSA-2019:1932",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:1932"
          },
          {
            "name": "RHSA-2019:1931",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:1931"
          },
          {
            "name": "RHSA-2019:4159",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:4159"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2017-08-22T00:00:00",
      "datePublic": "2017-10-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from UFO to non-UFO one, which leads to a memory corruption. In case UFO packet lengths exceeds MTU, copy = maxfraglen - skb-\u003elen becomes negative on the non-UFO path and the branch to allocate new skb is taken. This triggers fragmentation and computation of fraggap = skb_prev-\u003elen - maxfraglen. Fraggap can exceed MTU, causing copy = datalen - transhdrlen - fraggap to become negative. Subsequently skb_copy_and_csum_bits() writes out-of-bounds. A similar issue is present in IPv6 code. The bug was introduced in e89e9cf539a2 (\"[IPv4/IPv6]: UFO Scatter-gather approach\") on Oct 18 2005."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-12-10T15:06:14",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[oss-security] 20170810 Linux kernel: CVE-2017-1000112: Exploitable memory corruption due to UFO to non-UFO path switch",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://seclists.org/oss-sec/2017/q3/277"
        },
        {
          "name": "RHSA-2017:3200",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:3200"
        },
        {
          "name": "100262",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/100262"
        },
        {
          "name": "RHSA-2017:2918",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2918"
        },
        {
          "name": "RHSA-2017:2931",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2931"
        },
        {
          "name": "DSA-3981",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2017/dsa-3981"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112"
        },
        {
          "name": "1039162",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039162"
        },
        {
          "name": "45147",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/45147/"
        },
        {
          "name": "RHSA-2017:2930",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2930"
        },
        {
          "name": "RHSA-2019:1932",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:1932"
        },
        {
          "name": "RHSA-2019:1931",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:1931"
        },
        {
          "name": "RHSA-2019:4159",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:4159"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "2017-08-22T17:29:33.325175",
          "ID": "CVE-2017-1000112",
          "REQUESTER": "willemdebruijn.kernel@gmail.com",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from UFO to non-UFO one, which leads to a memory corruption. In case UFO packet lengths exceeds MTU, copy = maxfraglen - skb-\u003elen becomes negative on the non-UFO path and the branch to allocate new skb is taken. This triggers fragmentation and computation of fraggap = skb_prev-\u003elen - maxfraglen. Fraggap can exceed MTU, causing copy = datalen - transhdrlen - fraggap to become negative. Subsequently skb_copy_and_csum_bits() writes out-of-bounds. A similar issue is present in IPv6 code. The bug was introduced in e89e9cf539a2 (\"[IPv4/IPv6]: UFO Scatter-gather approach\") on Oct 18 2005."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[oss-security] 20170810 Linux kernel: CVE-2017-1000112: Exploitable memory corruption due to UFO to non-UFO path switch",
              "refsource": "MLIST",
              "url": "http://seclists.org/oss-sec/2017/q3/277"
            },
            {
              "name": "RHSA-2017:3200",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:3200"
            },
            {
              "name": "100262",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/100262"
            },
            {
              "name": "RHSA-2017:2918",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2918"
            },
            {
              "name": "RHSA-2017:2931",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2931"
            },
            {
              "name": "DSA-3981",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2017/dsa-3981"
            },
            {
              "name": "https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112",
              "refsource": "MISC",
              "url": "https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112"
            },
            {
              "name": "1039162",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039162"
            },
            {
              "name": "45147",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/45147/"
            },
            {
              "name": "RHSA-2017:2930",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2930"
            },
            {
              "name": "RHSA-2019:1932",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:1932"
            },
            {
              "name": "RHSA-2019:1931",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:1931"
            },
            {
              "name": "RHSA-2019:4159",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:4159"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-1000112",
    "datePublished": "2017-10-04T01:00:00",
    "dateReserved": "2017-10-03T00:00:00",
    "dateUpdated": "2024-08-05T21:53:06.785Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2017-1000111 (GCVE-0-2017-1000111)

Vulnerability from cvelistv5

Published

2017-10-04 01:00

Modified

2024-08-05 21:53

Severity ?

CWE

Summary

Linux kernel: heap out-of-bounds in AF_PACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes socket state may race with safety checks in packet_set_ring. Previously with PACKET_VERSION. This time with PACKET_RESERVE. The solution is similar: lock the socket for the update. This issue may be exploitable, we did not investigate further. As this issue affects PF_PACKET sockets, it requires CAP_NET_RAW in the process namespace. But note that with user namespaces enabled, any process can create a namespace in which it has CAP_NET_RAW.

References

►

URL

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

wid-sec-w-2025-0269

Vulnerability from csaf_certbund

CVE-2017-1000112 (GCVE-0-2017-1000112)

Vulnerability from cvelistv5

CVE-2017-1000111 (GCVE-0-2017-1000111)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature