CVE-2017-17805: The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the…

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service (uninitialized-memory free and kernel crash) or have unspecified other impact by executing a crafted sequence of system calls that use the blkcipher_walk API. Both the generic implementation (crypto/salsa20_generic.c) and x86 implementation (arch/x86/crypto/salsa20_glue.c) of Salsa20 were vulnerable.

Affected

26 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	linux	< linux 4.14.7-1 (bookworm)	linux 4.14.7-1 (bookworm)
linux	linux_kernel	>= 0 < 4.14.7-1	4.14.7-1
linux	linux_kernel	>= 0 < 4.14.7-1	4.14.7-1
linux	linux_kernel	>= 0 < 4.14.7-1	4.14.7-1
linux	linux_kernel	>= 0 < 4.14.7-1	4.14.7-1
linux	linux_kernel	>= 0 < 3.13.0-144.193	3.13.0-144.193
linux	linux_kernel	>= 0 < 4.4.0-119.143	4.4.0-119.143
linux	linux_kernel	>= 2.6.25 < 3.2.97	3.2.97
linux	linux_kernel	>= 3.17 < 3.18.89	3.18.89
linux	linux_kernel	>= 3.19 < 4.1.49	4.1.49
linux	linux_kernel	>= 3.3 < 3.16.52	3.16.52
linux	linux_kernel	>= 4.10 < 4.14.8	4.14.8
linux	linux_kernel	>= 4.2 < 4.4.107	4.4.107
linux	linux_kernel	>= 4.5 < 4.9.71	4.9.71
opensuse	leap	—	—
opensuse_project	leap	—	—
suse	linux_enterprise_desktop	—	—
suse	linux_enterprise_server	—	—
suse	linux_enterprise_server	—	—

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

osv7.8HIGH