Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2017-6353

Published: 01/03/2017 Updated: 04/11/2017
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux Kernel

Vulnerability Summary

net/sctp/socket.c in the Linux kernel up to and including 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service (invalid unlock and double free) via a multithreaded application. NOTE: this vulnerability exists because of an incorrect fix for CVE-2017-5986.

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Vendor Advisories

Debian Security Advisories: DSA-3804-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts CVE-2016-9588 Jim Mattson discovered that the KVM implementation for Intel x86 processors does not properly handle #BP and #OF exceptions in an L2 (nested) virtual machine A local attacker ...
Amazon Linux AMI: ALAS-2017-814
Possible double free in stcp_sendmsg() (incorrect fix for CVE-2017-5986): It was found that the code in net/sctp/socketc in the Linux kernel through 4101 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service (invalid unlock and double free) via a multithreaded ...
Red Hat: CVE-2017-6353
It was found that the code in net/sctp/socketc in the Linux kernel through 4101 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service (invalid unlock and double free) via a multithreaded application This vulnerability was introduced by CVE-2017-5986 fix (comm ...

Github Repositories

https://github.com/simondeziel/puppet-kernel

Manages kernel packages and other kernel related config files.

Puppet kernel Manages kernel packages and other kernel related config files Requirements Ubuntu 1404 and later Usage To keep the kernel packages up to date: class { 'kernel': package_ensure => 'latest', } To blacklist the dccp module: kernel::modprobe::blacklist { 'dccp': comment =&

References

CWE-415https://github.com/torvalds/linux/commit/dfcb9f4f99f1e9a49e43398a7bfbf56927544af1http://www.openwall.com/lists/oss-security/2017/02/27/2http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=dfcb9f4f99f1e9a49e43398a7bfbf56927544af1http://www.securityfocus.com/bid/96473http://www.debian.org/security/2017/dsa-3804https://nvd.nist.govhttps://github.com/simondeziel/puppet-kernelhttps://www.debian.org/security/./dsa-3804
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook