CVE-2017-16939
published 2017-11-24CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of…
PriorityP347high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
2.15%
79.8th percentile
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 4.13.13-1 (bookworm) | linux 4.13.13-1 (bookworm) |
| linux | linux_kernel | >= 0 < 4.13.13-1 | 4.13.13-1 |
| linux | linux_kernel | >= 0 < 4.13.13-1 | 4.13.13-1 |
| linux | linux_kernel | >= 0 < 4.13.13-1 | 4.13.13-1 |
| linux | linux_kernel | >= 0 < 4.13.13-1 | 4.13.13-1 |
| linux | linux_kernel | >= 0 < 3.13.0-137.186 | 3.13.0-137.186 |
| linux | linux_kernel | >= 0 < 4.4.0-104.127 | 4.4.0-104.127 |
| linux | linux_kernel | >= 0 < 4.4.0-103.126 | 4.4.0-103.126 |
| linux | linux_kernel | >= 2.6.28 < 3.2.97 | 3.2.97 |
| linux | linux_kernel | >= 3.17 < 3.18.86 | 3.18.86 |
| linux | linux_kernel | >= 3.19 < 4.1.48 | 4.1.48 |
| linux | linux_kernel | >= 3.3 < 3.16.52 | 3.16.52 |
| linux | linux_kernel | >= 4.10 < 4.13.11 | 4.13.11 |
| linux | linux_kernel | >= 4.2 < 4.4.104 | 4.4.104 |
| linux | linux_kernel | >= 4.5 < 4.9.60 | 4.9.60 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu7.0HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Linux kernel regression
vendor_ubuntu·2017-12-15·CVSS 7.0
[HIGH] Linux kernel regression
Title: Linux kernel regression
Summary: USN-3509-1 introduced a regression in the Linux kernel for Ubuntu 16.04 LTS.
USN-3509-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. Unfortunately, it also introduced a regression that prevented the
Ceph network filesystem from being used. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
Ubuntu
Linux kernel (Xenial HWE) regression
vendor_ubuntu·2017-12-15·CVSS 7.0
[HIGH] Linux kernel (Xenial HWE) regression
Title: Linux kernel (Xenial HWE) regression
Summary: USN-3509-2 introduced a regression in the Linux HWE kernel for Ubuntu 14.04 LTS.
USN-3509-2 fixed vulnerabilities in the Linux Hardware Enablement
kernel for Ubuntu 14.04 LTS. Unfortunately, it also introduced a
regression that prevented the Ceph network filesystem from being
used. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A loc
Ubuntu
Linux kernel (GCP) vulnerabilities
vendor_ubuntu·2017-12-08·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel (GCP) vulnerabilities
Title: Linux kernel (GCP) vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Zhao discovered that the associative array
implementation in the Linux kernel sometimes did not properly handle adding
a new entry. A local attacker co
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2017-12-08·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
been giv
Ubuntu
Linux kernel (Azure) vulnerabilities
vendor_ubuntu·2017-12-08·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel (Azure) vulnerabilities
Title: Linux kernel (Azure) vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
ATTENTION: Due to an unavoidable ABI change the kernel updates have
Ubuntu
Linux kernel (Trusty HWE) vulnerabilities
vendor_ubuntu·2017-12-08·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel (Trusty HWE) vulnerabilities
Title: Linux kernel (Trusty HWE) vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
USN-3510-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu
12.04 ESM.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administra
Ubuntu
Linux kernel (HWE) vulnerabilities
vendor_ubuntu·2017-12-07·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel (HWE) vulnerabilities
Title: Linux kernel (HWE) vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
USN-3508-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04.
This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 17.04 for Ubuntu
16.04 LTS.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges
Ubuntu
Linux kernel (Xenial HWE) vulnerabilities
vendor_ubuntu·2017-12-07·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel (Xenial HWE) vulnerabilities
Title: Linux kernel (Xenial HWE) vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
USN-3509-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu
14.04 LTS.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administra
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2017-12-07·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Zhao discovered that the associative array
implementation in the Linux kernel sometimes did not properly handle adding
a new entry. A local attacker could us
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2017-12-07·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Zhao discovered that the associative array
implementation in the Linux kernel sometimes did not properly handle adding
a new entry. A local attacker could us
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2017-12-07·CVSS 7.0
CVE-2017-1000405 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the Linux kernel.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Yonggang Guo discovered that a race condition existed in the driver
subsystem in the Linux kernel. A local attacker could use this to possibly
gain administrative privileges. (CVE-2017-12146
Red Hat
Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
vendor_redhat·2017-11-24·CVSS 7.8
CVE-2017-16939 [HIGH] CWE-416 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.
The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interface(CONFIG_XFRM_USER) compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrm_dump_policy_done. A user/process could abuse this flaw to potentially escalate their privileges on a system.
Statement: This issue does not affect the versions of Linux kernel as shipped with Red Hat Ent
Debian
CVE-2017-16939: linux - The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel ...
vendor_debian·2017·CVSS 7.8
CVE-2017-16939 [HIGH] CVE-2017-16939: linux - The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel ...
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.
Scope: local
bookworm: resolved (fixed in 4.13.13-1)
bullseye: resolved (fixed in 4.13.13-1)
forky: resolved (fixed in 4.13.13-1)
sid: resolved (fixed in 4.13.13-1)
trixie: resolved (fixed in 4.13.13-1)
GHSA
GHSA-87xr-wmm8-4mx3: The XFRM dump policy implementation in net/xfrm/xfrm_user
ghsa_unreviewed·2022-05-13
CVE-2017-16939 [HIGH] CWE-416 GHSA-87xr-wmm8-4mx3: The XFRM dump policy implementation in net/xfrm/xfrm_user
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.
OSV
linux-lts-xenial, linux-aws regression
osv·2017-12-15·CVSS 7.0
[HIGH] linux-lts-xenial, linux-aws regression
linux-lts-xenial, linux-aws regression
USN-3509-2 fixed vulnerabilities in the Linux Hardware Enablement
kernel for Ubuntu 14.04 LTS. Unfortunately, it also introduced a
regression that prevented the Ceph network filesystem from being
used. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain a
OSV
linux, linux-aws, linux-kvm, linux-raspi2 regression
osv·2017-12-15·CVSS 7.0
[HIGH] linux, linux-aws, linux-kvm, linux-raspi2 regression
linux, linux-aws, linux-kvm, linux-raspi2 regression
USN-3509-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. Unfortunately, it also introduced a regression that prevented the
Ceph network filesystem from being used. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain adminis
OSV
linux-azure vulnerabilities
osv·2017-12-08·CVSS 7.0
CVE-2017-16939 [HIGH] linux-azure vulnerabilities
linux-azure vulnerabilities
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
OSV
linux-gcp vulnerabilities
osv·2017-12-08·CVSS 7.0
CVE-2017-16939 [HIGH] linux-gcp vulnerabilities
linux-gcp vulnerabilities
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Zhao discovered that the associative array
implementation in the Linux kernel sometimes did not properly handle adding
a new entry. A local attacker could use this to cause a denial of service
(system crash). (CVE-2017-12193)
Eric B
OSV
linux vulnerabilities
osv·2017-12-08·CVSS 7.0
CVE-2017-16939 [HIGH] linux vulnerabilities
linux vulnerabilities
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
OSV
linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
osv·2017-12-07·CVSS 7.0
CVE-2017-16939 [HIGH] linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Zhao discovered that the associative array
implementation in the Linux kernel sometimes did not properly handle adding
a new entry. A local attacker could use this to cause a denial o
OSV
linux-hwe vulnerabilities
osv·2017-12-07·CVSS 7.0
CVE-2017-16939 [HIGH] linux-hwe vulnerabilities
linux-hwe vulnerabilities
USN-3508-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04.
This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 17.04 for Ubuntu
16.04 LTS.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Yonggang Guo discovered that a race condition existed in the
OSV
linux-lts-xenial, linux-aws vulnerabilities
osv·2017-12-07·CVSS 7.0
[HIGH] linux-lts-xenial, linux-aws vulnerabilities
linux-lts-xenial, linux-aws vulnerabilities
USN-3509-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04
LTS. This update provides the corresponding updates for the Linux
Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu
14.04 LTS.
Mohamed Ghannam discovered that a use-after-free vulnerability existed in
the Netlink subsystem (XFRM) in the Linux kernel. A local attacker could
use this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2017-16939)
It was discovered that the Linux kernel did not properly handle copy-on-
write of transparent huge pages. A local attacker could use this to cause a
denial of service (application crashes) or possibly gain administrative
privileges. (CVE-2017-1000405)
Fan Wu, Haoran Qiu, and Shixiong Z
OSV
CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user
osv·2017-11-24·CVSS 7.8
CVE-2017-16939 [HIGH] CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrm_user
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.
No detection rules found.
Bugzilla
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
bugzilla·2017-11-24·CVSS 7.8
CVE-2017-16939 [HIGH] CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation
Linux kernel built with the Transformation User configuration
interface(CONFIG_XFRM_USER) is vulnerable to a use-after-free
issue. It could occur while closing a xfrm netlink socket,
in xfrm_dump_policy_done.
A user/process could use this flaw to potentially escalate their
privileges on a system.
Upstream patch:
-> https://git.kernel.org/linus/1137b5e2529a8f5ca8ee709288ecba3e68044df2
Reference:
-> http://www.openwall.com/lists/oss-security/2017/11/24/3
-> https://blogs.securiteam.com/index.php/archives/3535
Discussion:
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1517221]
---
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1517284]
---
Stat
Bugzilla
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
bugzilla·2017-11-24·CVSS 7.8
CVE-2017-16939 [HIGH] CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects
Bugzilla
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
bugzilla·2017-11-24·CVSS 7.8
CVE-2017-16939 [HIGH] CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
CVE-2017-16939 Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1137b5e2529a8f5ca8ee709288ecba3e68044df2http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.htmlhttp://seclists.org/fulldisclosure/2017/Nov/40http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11http://www.securityfocus.com/bid/101954https://access.redhat.com/errata/RHSA-2018:1318https://access.redhat.com/errata/RHSA-2018:1355https://access.redhat.com/errata/RHSA-2019:1170https://access.redhat.com/errata/RHSA-2019:1190https://blogs.securiteam.com/index.php/archives/3535https://bugzilla.suse.com/show_bug.cgi?id=1069702https://github.com/torvalds/linux/commit/1137b5e2529a8f5ca8ee709288ecba3e68044df2https://lists.debian.org/debian-lts-announce/2017/12/msg00004.htmlhttps://www.debian.org/security/2018/dsa-4082http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1137b5e2529a8f5ca8ee709288ecba3e68044df2http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.htmlhttp://seclists.org/fulldisclosure/2017/Nov/40http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11http://www.securityfocus.com/bid/101954https://access.redhat.com/errata/RHSA-2018:1318https://access.redhat.com/errata/RHSA-2018:1355https://access.redhat.com/errata/RHSA-2019:1170https://access.redhat.com/errata/RHSA-2019:1190https://blogs.securiteam.com/index.php/archives/3535https://bugzilla.suse.com/show_bug.cgi?id=1069702https://github.com/torvalds/linux/commit/1137b5e2529a8f5ca8ee709288ecba3e68044df2https://lists.debian.org/debian-lts-announce/2017/12/msg00004.htmlhttps://www.debian.org/security/2018/dsa-4082
2017-11-24
Published