Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2017-1000366

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult.

Source

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process stack or the adjacent memory region, and thus increase their privileges on the system. This is glibc-side mitigation which blocks processing of LD_LIBRARY_PATH for programs running in secure-execution mode and reduces the number of allocations performed by the processing of LD_AUDIT, LD_PRELOAD, and LD_HWCAP_MASK, making successful exploitation of this issue more difficult.

Find out more about CVE-2017-1000366 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This is a glibc-side mitigation. For a related kernel mitigation please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-1000364 .

CVSS v2 metrics

Base Score	6.2
Base Metrics	AV:L/AC:H/Au:N/C:C/I:C/A:C
Access Vector	Local
Access Complexity	High
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	Complete
Availability Impact	Complete

CVSS v3 metrics

CVSS3 Base Score	7.4
CVSS3 Base Metrics	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector	Local
Attack Complexity	High
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality	High
Integrity Impact	High
Availability Impact	High

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform	Errata	Release Date
Red Hat Enterprise Linux Long Life (v. 5.9 server) (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Server (v. 5 ELS) (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Server TUS (v. 6.6) (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Server TUS (v. 6.5) (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Container Development Kit 3.0	RHSA-2017:1567	2017-06-21
Red Hat Enterprise Linux Advanced Update Support 6.6 (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux 7 (glibc)	RHSA-2017:1481	2017-06-19
Red Hat Enterprise Linux Extended Update Support 6.7 (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Advanced Update Support 6.4 (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux 6 (glibc)	RHSA-2017:1480	2017-06-19
Red Hat Enterprise Linux Advanced Update Support 6.2 (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Advanced Update Support 6.5 (glibc)	RHSA-2017:1479	2017-06-19
Red Hat Enterprise Linux Extended Update Support 7.2 (glibc)	RHSA-2017:1479	2017-06-19

Affected Packages State

Platform	Package	State
Red Hat Enterprise Linux 4	glibc	Will not fix

Acknowledgements

Red Hat would like to thank Qualys Research Labs for reporting this issue.

External References

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-1000366

Statement

CVSS v2 metrics

CVSS v3 metrics

Red Hat Security Errata

Affected Packages State

Acknowledgements

External References

Vulmon Search

About

Products

Connect