CVE-2017-1000364

MEDIUM

Description

An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).

References

http://www.debian.org/security/2017/dsa-3886

http://www.securityfocus.com/bid/99130

http://www.securitytracker.com/id/1038724

https://access.redhat.com/errata/RHSA-2017:1482

https://access.redhat.com/errata/RHSA-2017:1483

https://access.redhat.com/errata/RHSA-2017:1484

https://access.redhat.com/errata/RHSA-2017:1485

https://access.redhat.com/errata/RHSA-2017:1486

https://access.redhat.com/errata/RHSA-2017:1487

https://access.redhat.com/errata/RHSA-2017:1488

https://access.redhat.com/errata/RHSA-2017:1489

https://access.redhat.com/errata/RHSA-2017:1490

https://access.redhat.com/errata/RHSA-2017:1491

https://access.redhat.com/errata/RHSA-2017:1567

https://access.redhat.com/errata/RHSA-2017:1616

https://access.redhat.com/errata/RHSA-2017:1647

https://access.redhat.com/errata/RHSA-2017:1712

https://access.redhat.com/security/cve/CVE-2017-1000364

https://kc.mcafee.com/corporate/index?page=content&id=SB10205

https://kc.mcafee.com/corporate/index?page=content&id=SB10207

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03800en_us

https://www.exploit-db.com/exploits/45625/

https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

https://www.suse.com/security/cve/CVE-2017-1000364/

https://www.suse.com/support/kb/doc/?id=7020973

Details

Source: MITRE

Published: 2017-06-19

Updated: 2018-10-18

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 6.2

Vector: (AV:L/AC:H/Au:N/C:C/I:C/A:C)

Impact Score: 10

Exploitability Score: 1.9

Severity: MEDIUM

CVSS v3.0

Base Score: 7.4

Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.4

Severity: HIGH