Home

CVE-2017-1000364

Description

An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be jumped over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).

Risk Information

Base Score
7.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
9.599

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3324-1) linux-image-generic_4.10.0.24.26_i386.debLinux
Linux kernel (USN-3324-1) linux-image-generic_4.10.0.24.26_amd64.debLinux
Linux kernel (USN-3324-1) linux-image-lowlatency_4.10.0.24.26_i386.debLinux
Linux kernel (USN-3324-1) linux-image-lowlatency_4.10.0.24.26_amd64.debLinux
Linux kernel (USN-3324-1) linux-image-4.10.0-24-generic_4.10.0-24.28_i386.debLinux
Linux kernel (USN-3324-1) linux-image-4.10.0-24-generic_4.10.0-24.28_amd64.debLinux
Linux kernel (USN-3324-1) linux-image-4.10.0-24-lowlatency_4.10.0-24.28_i386.debLinux
Linux kernel (USN-3324-1) linux-image-4.10.0-24-lowlatency_4.10.0-24.28_amd64.debLinux
Linux kernel (USN-3326-1) linux-image-virtual_4.8.0.56.69_i386.debLinux
Linux kernel (USN-3326-1) linux-image-virtual_4.8.0.56.69_amd64.debLinux
Linux kernel (USN-3326-1) linux-image-4.8.0-56-generic_4.8.0-56.61_i386.debLinux
Linux kernel (USN-3326-1) linux-image-4.8.0-56-generic_4.8.0-56.61_amd64.debLinux
Linux kernel (USN-3326-1) linux-image-4.8.0-56-lowlatency_4.8.0-56.61_i386.debLinux
Linux kernel (USN-3326-1) linux-image-4.8.0-56-lowlatency_4.8.0-56.61_amd64.debLinux
Linux kernel (USN-3328-1) linux-image-generic_4.4.0.81.87_i386.debLinux
Linux kernel (USN-3328-1) linux-image-generic_4.4.0.81.87_amd64.debLinux
Linux kernel (USN-3328-1) linux-image-lowlatency_4.4.0.81.87_i386.debLinux
Linux kernel (USN-3328-1) linux-image-lowlatency_4.4.0.81.87_amd64.debLinux
Linux kernel (USN-3328-1) linux-image-4.4.0-81-generic_4.4.0-81.104_i386.debLinux
Linux kernel (USN-3328-1) linux-image-4.4.0-81-generic_4.4.0-81.104_amd64.debLinux
Linux kernel (USN-3328-1) linux-image-4.4.0-81-lowlatency_4.4.0-81.104_i386.debLinux
Linux kernel (USN-3328-1) linux-image-4.4.0-81-lowlatency_4.4.0-81.104_amd64.debLinux
Linux kernel for Google Container Engine (GKE) systems (USN-3329-1) linux-image-4.4.0-1016-gke_4.4.0-1016.16_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-3331-1) linux-image-4.4.0-1020-aws_4.4.0-1020.29_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-4.8.0-56-generic_4.8.0-56.61~16.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-4.8.0-56-generic_4.8.0-56.61~16.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-generic-hwe-16.04_4.8.0.56.27_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-generic-hwe-16.04_4.8.0.56.27_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-4.8.0-56-lowlatency_4.8.0-56.61~16.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-4.8.0-56-lowlatency_4.8.0-56.61~16.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-lowlatency-hwe-16.04_4.8.0.56.27_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3333-1) linux-image-lowlatency-hwe-16.04_4.8.0.56.27_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-4.4.0-81-generic_4.4.0-81.104~14.04.1_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-4.4.0-81-generic_4.4.0-81.104~14.04.1_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-generic-lts-xenial_4.4.0.81.66_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-generic-lts-xenial_4.4.0.81.66_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-4.4.0-81-lowlatency_4.4.0-81.104~14.04.1_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-4.4.0-81-lowlatency_4.4.0-81.104~14.04.1_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-lowlatency-lts-xenial_4.4.0.81.66_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3334-1) linux-image-lowlatency-lts-xenial_4.4.0.81.66_amd64.debLinux
Linux kernel (USN-3335-1) linux-image-generic_3.13.0.121.131_amd64.debLinux
Linux kernel (USN-3335-1) linux-image-lowlatency_3.13.0.121.131_amd64.debLinux
Linux kernel (USN-3335-1) linux-image-3.13.0-121-generic_3.13.0-121.170_i386.debLinux
Linux kernel (USN-3335-1) linux-image-3.13.0-121-generic_3.13.0-121.170_amd64.debLinux
Linux kernel (USN-3335-1) linux-image-3.13.0-121-lowlatency_3.13.0-121.170_i386.debLinux
Linux kernel (USN-3335-1) linux-image-3.13.0-121-lowlatency_3.13.0-121.170_amd64.debLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el7.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el7.x86_64.rpmLinux
Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-1000364)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234