CVE-2017-1000365

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation. This affects Linux Kernel versions 4.11.5 and earlier. It appears that this feature was introduced in the Linux Kernel version 2.6.23.

References

http://www.debian.org/security/2017/dsa-3927

http://www.debian.org/security/2017/dsa-3945

http://www.securityfocus.com/bid/99156

https://access.redhat.com/security/cve/CVE-2017-1000365

https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

Details

Source: MITRE

Published: 2017-06-19

Updated: 2019-10-03

Risk Information

CVSS v2

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.11.5 (inclusive)

Tenable Plugins

View all (41 total)

IDNameProductFamilySeverity
127233NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0049)NessusNewStart CGSL Local Security Checks
high
127202NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0034)NessusNewStart CGSL Local Security Checks
high
124823EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1500)NessusHuawei Local Security Checks
high
124821EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1498)NessusHuawei Local Security Checks
high
121098Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2018-075)NessusVirtuozzo Local Security Checks
high
121097Virtuozzo 7 : readykernel-patch (VZA-2018-072)NessusVirtuozzo Local Security Checks
high
106469OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0015) (BlueBorne) (Meltdown) (Spectre) (Stack Clash)NessusOracleVM Local Security Checks
critical
105248OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0174) (BlueBorne) (Dirty COW) (Stack Clash)NessusOracleVM Local Security Checks
high
105247Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3659) (BlueBorne) (Dirty COW) (Stack Clash)NessusOracle Linux Local Security Checks
high
105147OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0173) (BlueBorne) (Stack Clash)NessusOracleVM Local Security Checks
high
105145Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3658) (BlueBorne) (Stack Clash)NessusOracle Linux Local Security Checks
high
105144Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3657) (BlueBorne) (Stack Clash)NessusOracle Linux Local Security Checks
high
104374SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2920-1) (KRACK) (Stack Clash)NessusSuSE Local Security Checks
critical
104271SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2908-1) (KRACK) (Stack Clash)NessusSuSE Local Security Checks
critical
104100Juniper Junos Space < 17.1R1 Multiple Vulnerabilities (JSA10826)NessusJunos Local Security Checks
high
103404OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0152) (BlueBorne) (Stack Clash)NessusOracleVM Local Security Checks
high
103402Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3622) (BlueBorne) (Stack Clash)NessusOracle Linux Local Security Checks
high
103401Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3621) (BlueBorne) (Stack Clash)NessusOracle Linux Local Security Checks
high
103363Debian DLA-1099-1 : linux security update (BlueBorne) (Stack Clash)NessusDebian Local Security Checks
high
103354SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2525-1) (Stack Clash)NessusSuSE Local Security Checks
critical
103110SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2389-1) (Stack Clash)NessusSuSE Local Security Checks
high
102997EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1159)NessusHuawei Local Security Checks
critical
102774OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0145) (Stack Clash)NessusOracleVM Local Security Checks
critical
102773Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3609) (Stack Clash)NessusOracle Linux Local Security Checks
critical
102550Debian DSA-3945-1 : linux - security update (Stack Clash)NessusDebian Local Security Checks
high
102525Ubuntu 14.04 LTS : linux-lts-xenial regression (USN-3392-2) (Stack Clash)NessusUbuntu Local Security Checks
high
102524Ubuntu 16.04 LTS : linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon regression (USN-3392-1) (Stack Clash)NessusUbuntu Local Security Checks
high
102261Ubuntu 14.04 LTS : linux vulnerabilities (USN-3381-1) (Stack Clash)NessusUbuntu Local Security Checks
high
102211Debian DSA-3927-1 : linux - security update (Stack Clash)NessusDebian Local Security Checks
high
102198Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3378-2) (Stack Clash)NessusUbuntu Local Security Checks
high
102197Ubuntu 16.04 LTS : linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities (USN-3378-1) (Stack Clash)NessusUbuntu Local Security Checks
high
102196Ubuntu 16.04 LTS : linux-hwe vulnerabilities (USN-3377-2) (Stack Clash)NessusUbuntu Local Security Checks
high
102195Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3377-1) (Stack Clash)NessusUbuntu Local Security Checks
high
101762SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:1853-1) (Stack Clash)NessusSuSE Local Security Checks
high
101723Fedora 26 : kernel (2017-d3ed702fe4) (Stack Clash)NessusFedora Local Security Checks
high
101348openSUSE Security Update : the Linux Kernel (openSUSE-2017-798) (Stack Clash)NessusSuSE Local Security Checks
high
101170Slackware 14.2 / current : kernel (SSA:2017-181-02) (Stack Clash)NessusSlackware Local Security Checks
high
101115Slackware 14.1 : Slackware 14.1 kernel (SSA:2017-180-01) (Stack Clash)NessusSlackware Local Security Checks
high
101068Fedora 24 : kernel (2017-05f10e29f4) (Stack Clash)NessusFedora Local Security Checks
high
101051Slackware 14.2 / current : kernel (SSA:2017-177-01) (Stack Clash)NessusSlackware Local Security Checks
high
101037Fedora 25 : kernel (2017-d7bc1b3056) (Stack Clash)NessusFedora Local Security Checks
high