NVD

Id
83812  
Name
CVE-2017-7184  
Description
The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition at CanSecWest 2017 for the Ubuntu 16.10 linux-image-* package 4.8.0.41.52.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-07-18  
Published
2017-03-19  
Modified Date
2017-07-11  
Seq
2017-7184  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
411698 83812 CVE-2017-5604 96184  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
66365 JVNDB-2017-002703 Linux Kernel の net/xfrm/xfrm_user.c の xfrm_replay_verify_len 関数における root 権限を取得される脆弱性 Linux Kernel の net/xfrm/xfrm_user.c の xfrm_replay_verify_len 関数は、XFRM_MSG_NEWAE アップデート後に特定のサイズのデータを検証しないため、root 権限を取得される、またはサービス運用妨害 (ヒープベースの境界外アクセス) 状態にされる脆弱性が存在します。 CVE-2017-7184 0 CVE-2017-7184 83812 7.2 7.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002703.html 2017-03-29 2017-04-26 View