CVE-2017-7979
The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service (uninitialized memory access and refcount underflow, and system hang or crash) or possibly have unspecified other impact via "tc filter add" commands in certain contexts. NOTE: this does not affect stable kernels, such as 4.10.x, from kernel.org.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 4.11-rc5 | 4.11-rc5.x |
| linux / linux_kernel | 4.11-rc2 | 4.11-rc2.x |
| linux / linux_kernel | 4.11-rc3 | 4.11-rc3.x |
| linux / linux_kernel | 4.11-rc4 | 4.11-rc4.x |
| linux / linux_kernel | 4.11-rc6 | 4.11-rc6.x |
| linux / linux_kernel | 4.11-rc7 | 4.11-rc7.x |
| linux / linux_kernel | 4.11-rc1 | 4.11-rc1.x |
- http://marc.info/?l=linux-netdev&m=149200742616349
- http://marc.info/?l=linux-netdev&m=149200746116365
- http://marc.info/?l=linux-netdev&m=149200746116366
- http://marc.info/?l=linux-netdev&m=149251041420194
- http://marc.info/?l=linux-netdev&m=149251041420195
- http://www.securityfocus.com/bid/97969
- https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1682368
- https://bugzilla.proxmox.com/show_bug.cgi?id=1351
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime