Home

CVE-2017-9076

Description

The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.074

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3345-1) linux-image-4.10.0-26-generic_4.10.0-26.30_i386.debLinux
Linux kernel (USN-3345-1) linux-image-4.10.0-26-generic_4.10.0-26.30_amd64.debLinux
Linux kernel (USN-3345-1) linux-image-4.10.0-26-lowlatency_4.10.0-26.30_i386.debLinux
Linux kernel (USN-3345-1) linux-image-4.10.0-26-lowlatency_4.10.0-26.30_amd64.debLinux
CVE-2017-9076NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234