Home

CVE-2017-7308

Description

The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate certain block-size data, which allows local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privileges (if the CAP_NET_RAW capability is held), via crafted system calls.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
86.465

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3126-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3126-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3126-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3126-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3170-1) linux-image-generic_4.8.0.46.58_i386.debLinux
Linux kernel (USN-3170-1) linux-image-generic_4.8.0.46.58_amd64.debLinux
Linux kernel (USN-3170-1) linux-image-lowlatency_4.8.0.46.58_i386.debLinux
Linux kernel (USN-3170-1) linux-image-lowlatency_4.8.0.46.58_amd64.debLinux
Linux kernel (USN-3187-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3187-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3187-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3187-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3248-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3248-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3248-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3248-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-aws_4.4.0.1013.16_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-gke_4.4.0.1010.12_amd64.debLinux
Linux kernel (USN-3256-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3256-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-generic_4.4.0.72.78_i386.debLinux
Linux kernel (USN-3256-1) linux-image-generic_4.4.0.72.78_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-generic_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3256-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-generic_3.13.0.116.126_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-virtual_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3256-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-lowlatency_4.4.0.72.78_i386.debLinux
Linux kernel (USN-3256-1) linux-image-lowlatency_4.4.0.72.78_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-lowlatency_3.13.0.116.126_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-generic-pae_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-1010-gke_4.4.0-1010.10_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-1013-aws_4.4.0-1013.22_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-72-generic_4.4.0-72.93_i386.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-72-generic_4.4.0-72.93_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-4.8.0-46-generic_4.8.0-46.49_i386.debLinux
Linux kernel (USN-3256-1) linux-image-4.8.0-46-generic_4.8.0-46.49_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-3.2.0-126-generic_3.2.0-126.169_i386.debLinux
Linux kernel (USN-3256-1) linux-image-3.2.0-126-generic_3.2.0-126.169_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-3.2.0-126-virtual_3.2.0-126.169_i386.debLinux
Linux kernel (USN-3256-1) linux-image-3.2.0-126-virtual_3.2.0-126.169_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-3.13.0-116-generic_3.13.0-116.163_i386.debLinux
Linux kernel (USN-3256-1) linux-image-3.13.0-116-generic_3.13.0-116.163_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-72-lowlatency_4.4.0-72.93_i386.debLinux
Linux kernel (USN-3256-1) linux-image-4.4.0-72-lowlatency_4.4.0-72.93_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-4.8.0-46-lowlatency_4.8.0-46.49_i386.debLinux
Linux kernel (USN-3256-1) linux-image-4.8.0-46-lowlatency_4.8.0-46.49_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-3.13.0-116-lowlatency_3.13.0-116.163_i386.debLinux
Linux kernel (USN-3256-1) linux-image-3.13.0-116-lowlatency_3.13.0-116.163_amd64.debLinux
Linux kernel (USN-3256-1) linux-image-3.2.0-126-generic-pae_3.2.0-126.169_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.4.0-72-generic_4.4.0-72.93~14.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.4.0-72-generic_4.4.0-72.93~14.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.8.0-46-generic_4.8.0-46.49~16.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.8.0-46-generic_4.8.0-46.49~16.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-hwe-16.04_4.8.0.46.18_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-hwe-16.04_4.8.0.46.18_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-3.13.0-116-generic_3.13.0-116.163~precise1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-3.13.0-116-generic_3.13.0-116.163~precise1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-lts-trusty_3.13.0.116.107_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-lts-trusty_3.13.0.116.107_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-lts-xenial_4.4.0.72.59_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-generic-lts-xenial_4.4.0.72.59_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.4.0-72-lowlatency_4.4.0-72.93~14.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.4.0-72-lowlatency_4.4.0-72.93~14.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.8.0-46-lowlatency_4.8.0-46.49~16.04.1_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-4.8.0-46-lowlatency_4.8.0-46.49~16.04.1_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-lowlatency-hwe-16.04_4.8.0.46.18_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-lowlatency-hwe-16.04_4.8.0.46.18_amd64.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-lowlatency-lts-xenial_4.4.0.72.59_i386.debLinux
Linux hardware enablement (HWE) kernel (USN-3256-2) linux-image-lowlatency-lts-xenial_4.4.0.72.59_amd64.debLinux
Linux kernel (USN-3206-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3206-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3206-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3206-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3206-1) linux-image-generic-pae_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3218-1) linux-image_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3218-1) linux-image_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3218-1) linux-image-generic_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3218-1) linux-image-generic_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3218-1) linux-image-virtual_3.2.0.126.141_i386.debLinux
Linux kernel (USN-3218-1) linux-image-virtual_3.2.0.126.141_amd64.debLinux
Linux kernel (USN-3218-1) linux-image-generic-pae_3.2.0.126.141_i386.debLinux
Kernel security update (CESA-2018:1651) perf-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) kernel-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-doc-2.6.32-754.el6.noarch.rpmLinux
Kernel security update (CESA-2018:1651) python-perf-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) python-perf-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-debug-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) kernel-debug-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-devel-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) kernel-devel-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-headers-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) kernel-headers-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-firmware-2.6.32-754.el6.noarch.rpmLinux
Kernel security update (CESA-2018:1651) kernel-debug-devel-2.6.32-754.el6.i686.rpmLinux
Kernel security update (CESA-2018:1651) kernel-debug-devel-2.6.32-754.el6.x86_64.rpmLinux
Kernel security update (CESA-2018:1651) kernel-abi-whitelists-2.6.32-754.el6.noarch.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-abi-whitelists-2.6.32-754.el6.noarch.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-debug-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-debug-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-debug-devel-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-debug-devel-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-devel-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-devel-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-doc-2.6.32-754.el6.noarch.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-firmware-2.6.32-754.el6.noarch.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-headers-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update kernel-headers-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update perf-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update perf-2.6.32-754.el6.x86_64.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update python-perf-2.6.32-754.el6.i686.rpmLinux
(RHSA-2018:1854) Important: kernel security and bug fix update python-perf-2.6.32-754.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.18.4.el6uek update (ELSA-2017-3580) dtrace-modules-3.8.13-118.18.4.el6uek-0.4.5-3.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-118.18.4.el7uek update (ELSA-2017-3580) dtrace-modules-3.8.13-118.18.4.el7uek-0.4.5-3.el7.x86_64.rpmLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el6.x86_64.rpmLinux
Dtrace-modules-provider-headers update (ELSA-2017-3609) dtrace-modules-provider-headers-0.6.1-3.el7.x86_64.rpmLinux
Dtrace-modules-shared-headers update (ELSA-2017-3609) dtrace-modules-shared-headers-0.6.1-3.el7.x86_64.rpmLinux
(CESA-2018:1854) Important: kernel security and bug fix update kernel-debug-devel-2.6.32-754.el6.i686.rpmLinux
(CESA-2018:1854) Important: kernel security and bug fix update kernel-devel-2.6.32-754.el6.i686.rpmLinux
(CESA-2018:1854) Important: kernel security and bug fix update kernel-headers-2.6.32-754.el6.i686.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234