CVE-2017-7979

Published: 19 April 2017

The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service (uninitialized memory access and refcount underflow, and system hang or crash) or possibly have unspecified other impact via "tc filter add" commands in certain contexts. NOTE: this does not affect stable kernels, such as 4.10.x, from kernel.org.

From the Ubuntu security team

Fabian Gr├╝nbichler discovered that the Packet action API implementation in the Linux kernel improperly handled uninitialized data. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
Patches:
Introduced by 1045ba77a5962a22bce7777678ef46714107ea63
Fixed by e0535ce58b92d7baf0b33284a6c4f8f0338f943e
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
This package is not directly supported by the Ubuntu Security Team
linux-aws
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-azure
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-euclid
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-flo
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-gcp
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-gke
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-goldfish
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-grouper
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-hwe
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-hwe-edge
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-kvm
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
This package is not directly supported by the Ubuntu Security Team
linux-lts-raring
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-saucy
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
This package is not directly supported by the Ubuntu Security Team
linux-lts-trusty
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-utopic
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-vivid
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-wily
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-lts-xenial
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-maguro
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-mako
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-manta
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-raspi2
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-snapdragon
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)
linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (4.11~rc8)