Home

CVE-2017-18017

Description

The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
40.366

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-abi-whitelists-3.10.0-514.51.1.el7.noarch.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-debug-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-debug-devel-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-devel-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-doc-3.10.0-514.51.1.el7.noarch.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-headers-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-tools-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-tools-libs-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update kernel-tools-libs-devel-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update perf-3.10.0-514.51.1.el7.x86_64.rpmLinux
(RHSA-2018:1737) Important: kernel security and bug fix update python-perf-3.10.0-514.51.1.el7.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.26.1.el6uek update (ELSA-2018-4268) dtrace-modules-3.8.13-118.26.1.el6uek-0.4.5-3.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.26.1.el7uek update (ELSA-2018-4268) dtrace-modules-3.8.13-118.26.1.el7uek-0.4.5-3.el7.x86_64.rpmLinux
Use After Free Vulnerability (CVE-2017-18017)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234