Home > Vulnerability Database > CVE-2017-7184

Mend.io Vulnerability Database

CVE-2017-7184

Good to know:

Date: March 19, 2017

The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition at CanSecWest 2017 for the Ubuntu 16.10 linux-image-* package 4.8.0.41.52.

Language: C

Severity Score

7.8

Related Resources (20)

Url: https://nvd.nist.gov/vuln/detail/CVE-2017-7184

Url: http://www.securityfocus.com/bid/97018

Url: https://security-tracker.debian.org/tracker/CVE-2017-7184

Url: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f843ee6dd019bcece3e74e76ad9df0155655d0df

Url: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=677e806da4d916052585301785d847c3b3e6186a

Url: https://access.redhat.com/errata/RHSA-2019:4159

Url: https://access.redhat.com/security/cve/CVE-2017-7184

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2017-7184

Url: https://twitter.com/thezdi/status/842126074435665920

Url: https://github.com/torvalds/linux/commit/f843ee6dd019bcece3e74e76ad9df0155655d0df

Url: https://access.redhat.com/errata/RHSA-2017:2931

Url: https://source.android.com/security/bulletin/2017-05-01

Url: https://access.redhat.com/errata/RHSA-2017:2930

Url: http://www.eweek.com/security/ubuntu-linux-falls-on-day-1-of-pwn2own-hacking-competition

Url: https://blog.trendmicro.com/results-pwn2own-2017-day-one/

Url: http://openwall.com/lists/oss-security/2017/03/29/2

Url: https://access.redhat.com/errata/RHSA-2017:2918

Url: http://www.securitytracker.com/id/1038166

Url: https://github.com/torvalds/linux/commit/677e806da4d916052585301785d847c3b3e6186a

Url: https://www.mend.io/vulnerability-database/CVE-2017-7184

Severity Score

7.8

Weakness Type (CWE)

Permissions, Privileges, and Access Control

CWE-264

Insufficient Information

NVD-CWE-noinfo

Top Fix

Upgrade Version

Upgrade to version v4.11-rc5

Learn More

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	7.2
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2017-7184

Good to know:

Date: March 19, 2017

Language: C

Severity Score

Related Resources (20)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?