CVE-2017-18017
published 2018-01-03CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.
Affected
58 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arista | eos | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 4.11.6-1 (bookworm) | linux 4.11.6-1 (bookworm) |
| f5 | arx | 6.2.0 – 6.4.0 | — |
| linux | linux_kernel | >= 0 < 4.11.6-1 | 4.11.6-1 |
| linux | linux_kernel | >= 0 < 4.11.6-1 | 4.11.6-1 |
| linux | linux_kernel | >= 0 < 4.11.6-1 | 4.11.6-1 |
| linux | linux_kernel | >= 0 < 4.11.6-1 | 4.11.6-1 |
| linux | linux_kernel | >= 0 < 3.13.0-142.191 | 3.13.0-142.191 |
| linux | linux_kernel | >= 3.11 < 3.16.54 | 3.16.54 |
| linux | linux_kernel | >= 3.17 < 3.18.60 | 3.18.60 |
| linux | linux_kernel | >= 3.19 < 4.1.43 | 4.1.43 |
| linux | linux_kernel | >= 3.2 < 3.2.99 | 3.2.99 |
| linux | linux_kernel | >= 3.3 < 3.10.108 | 3.10.108 |
| linux | linux_kernel | >= 4.10 < 4.11 | 4.11 |
| linux | linux_kernel | >= 4.2 < 4.4.76 | 4.4.76 |
| linux | linux_kernel | >= 4.5 < 4.9.36 | 4.9.36 |
| openstack | cloud_magnum_orchestration | — | — |
| opensuse | leap | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_eus | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL