Published: 14/02/2017 Updated: 03/10/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel up to and including 4.9.9 allows malicious users to cause a denial of service (system crash) via (1) an application that makes crafted system calls or possibly (2) IPv4 traffic with invalid IP options.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Debian Bug report logs - #852556 linux-image-490-1-amd64: [Regression] Trendnet's TU-ET100C Pegasus II based LAN to USB adapter stopped to work Package: src:linux; Maintainer for src:linux is Debian Kernel Team <debian-kernel@listsdebianorg>; Reported by: Lisandro Damián Nicanor Pérez Meyer <lisandro@debianorg> ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts CVE-2016-6786 / CVE-2016-6787 It was discovered that the performance events subsystem does not properly manage locks during certain migrations, allowing a local attacker to escalate privileg ...

A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) resources for a DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO option is set on the socket A local, unprivileged user could use this flaw to alter the kernel memory, allowing them to escalate their p ...

Several security issues were fixed in the Linux kernel ...

Several security issues were fixed in the kernel ...

A vulnerability was found in the Linux kernel where having malicious IP options present would cause the ipv4_pktinfo_prepare() function to drop/free the dst This could result in a system crash or possible privilege escalation ...

SNF - Simple Network Fuzzer

SNF Simple Network Fuzzer is a very simple TCP and IP options fuzzer A typical TCP packet consists of a 20 bytes header In some cases, TCP options are added, increasing the header length by 32-bit words to a maximum of 40 bytes of options Thus, the TCP header size grows to a total of 60 bytes There are various possible options with a predefined structure: wwwia

CWE-476 https://patchwork.ozlabs.org/patch/724136/https://github.com/torvalds/linux/commit/34b2cef20f19c87999fff3da4071e66937db9644 https://bugzilla.redhat.com/show_bug.cgi?id=1421638 http://www.openwall.com/lists/oss-security/2017/02/12/3 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b2cef20f19c87999fff3da4071e66937db9644 http://www.securityfocus.com/bid/96233 https://source.android.com/security/bulletin/2017-07-01 http://www.debian.org/security/2017/dsa-3791 https://access.redhat.com/errata/RHSA-2017:2669 https://access.redhat.com/errata/RHSA-2017:2077 https://access.redhat.com/errata/RHSA-2017:1842 https://access.redhat.com/errata/RHSA-2017:1842 https://nvd.nist.gov https://github.com/0xca7/SNF https://www.debian.org/security/./dsa-3791 https://usn.ubuntu.com/3422-2/

CVE-2017-5970

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect