CVE-2017-17806

CWE-787Out-of-bounds WriteCWE-39117 documents9 sources
Severity
7.8HIGH
EPSS
0.0%
top 98.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Linux Linux KernelCanonical Ubuntu LinuxDebian Debian Linux+5 more
Timeline
PublishedDec 20
Latest updateMay 13

Description

The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3) to cause a kernel stack buffer overflow by executing a crafted sequence of system calls that encounter a missing SHA-3 initialization.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

NVDlinux/linux_kernel3.33.16.52+6
Debianlinux< 4.14.7-1+3
NVDopensuse/leap42.2

Also affects: Debian Linux 8.0, 9.0, Linux Enterprise 12, Ubuntu Linux 12.04, 14.04, 16.04, 17.10

Patches

Patch: git.kernel.orgPatch: lists.opensuse.orgPatch: lists.opensuse.org

🔴Vulnerability Details

3
GHSA
GHSA-7cfh-r37c-4mqr: The HMAC implementation (crypto/hmac2022-05-13
CVEList
CVE-2017-17806: The HMAC implementation (crypto/hmac2017-12-20
OSV
CVE-2017-17806: The HMAC implementation (crypto/hmac2017-12-20

📋Vendor Advisories

11
Android
CVE-2017-17806: crypto2018-06-01
Ubuntu
Linux kernel (Azure) vulnerabilities2018-04-24
Ubuntu
Linux kernel (Xenial HWE) vulnerabilities2018-04-05
Ubuntu
Linux kernel vulnerabilities2018-04-04
Ubuntu
Linux kernel (Raspberry Pi 2) vulnerabilities2018-04-04

💬Community

2
Bugzilla
CVE-2017-17806 kernel: HMAC implementation does not validate that the underlying cryptographic hash algorithm is unkeyed allowing local attackers to cause denial-of-service2017-12-21
Bugzilla
CVE-2017-17805 CVE-2017-17806 CVE-2017-17807 kernel: various flaws [fedora-all]2017-12-21