CVE-2017-15127

CWE-4608 documents7 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 86.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Linux Linux KernelRedhat Enterprise LinuxRedhat Enterprise MRG
Timeline
PublishedJan 14
Latest updateMay 13

Description

A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VM_SHARED hugetlbfs mapping could trigger a local denial of service (BUG).

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

CVEListV5linux_kernel_before_4.13Linux kernel before 4.13
NVDlinux/linux_kernel< 4.13
Debianlinux< 3.13.4-1+3

Also affects: Enterprise Linux 7.0

Patches

Patch: git.kernel.orgPatch: github.comPatch: git.kernel.org

🔴Vulnerability Details

3
GHSA
GHSA-fq75-cvw3-5jx9: A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb2022-05-13
OSV
CVE-2017-15127: A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb2018-01-14
CVEList
CVE-2017-15127: A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb2018-01-14

📋Vendor Advisories

2
Red Hat
kernel: Improper error handling of VM_SHARED hugetlbfs mapping in mm/hugetlb.c2017-12-08
Debian
CVE-2017-15127: linux - A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the...2017

💬Community

2
Bugzilla
CVE-2017-15127 kernel: Improper error handling of VM_SHARED hugetlbfs mapping in mm/hugetlb.c [fedora-all]2018-02-14
Bugzilla
CVE-2017-15127 kernel: Improper error handling of VM_SHARED hugetlbfs mapping in mm/hugetlb.c2017-12-12