CVE-2017-10661

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel queueing.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1e38da300e1e395a15048b0af1e5305bd91402f6

http://www.debian.org/security/2017/dsa-3981

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.15

http://www.securityfocus.com/bid/100215

https://access.redhat.com/errata/RHSA-2018:3083

https://access.redhat.com/errata/RHSA-2018:3096

https://bugzilla.redhat.com/show_bug.cgi?id=1481136

https://github.com/torvalds/linux/commit/1e38da300e1e395a15048b0af1e5305bd91402f6

https://source.android.com/security/bulletin/2017-08-01

https://www.exploit-db.com/exploits/43345/

Details

Source: MITRE

Published: 2017-08-19

Updated: 2018-10-31

Type: CWE-416

Risk Information

CVSS v2

Base Score: 7.6

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 4.9

Severity: HIGH

CVSS v3

Base Score: 7

Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.10.14 (inclusive)

Tenable Plugins

View all (57 total)

IDNameProductFamilySeverity
151462F5 Networks BIG-IP : Linux kernel vulnerability (K04337834)NessusF5 Networks Local Security Checks
high
132700RHEL 7 : kernel (RHSA-2020:0036)NessusRed Hat Local Security Checks
critical
131719RHEL 6 : MRG (RHSA-2019:4057)NessusRed Hat Local Security Checks
high
131675RHEL 7 : kernel (RHSA-2019:4058)NessusRed Hat Local Security Checks
high
127281NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel-rt Multiple Vulnerabilities (NS-SA-2019-0074)NessusNewStart CGSL Local Security Checks
critical
127272NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0070)NessusNewStart CGSL Local Security Checks
critical
124989EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1536)NessusHuawei Local Security Checks
high
124821EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1498)NessusHuawei Local Security Checks
high
119187Scientific Linux Security Update : kernel on SL7.x x86_64 (20181030)NessusScientific Linux Local Security Checks
high
118990CentOS 7 : kernel (CESA-2018:3083)NessusCentOS Local Security Checks
high
118770Oracle Linux 7 : kernel (ELSA-2018-3083)NessusOracle Linux Local Security Checks
high
118528RHEL 7 : kernel-rt (RHSA-2018:3096)NessusRed Hat Local Security Checks
high
118525RHEL 7 : kernel (RHSA-2018:3083)NessusRed Hat Local Security Checks
high
109158OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0035) (Dirty COW) (Meltdown) (Spectre)NessusOracleVM Local Security Checks
high
109156Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4071)NessusOracle Linux Local Security Checks
high
105352SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3340-1)NessusSuSE Local Security Checks
high
105350SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3337-1)NessusSuSE Local Security Checks
high
105349SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3336-1)NessusSuSE Local Security Checks
high
105348SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3332-1)NessusSuSE Local Security Checks
high
105290SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3323-1)NessusSuSE Local Security Checks
high
105289SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3322-1)NessusSuSE Local Security Checks
high
105288SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3321-1)NessusSuSE Local Security Checks
high
105287SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3320-1)NessusSuSE Local Security Checks
high
105286SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3318-1)NessusSuSE Local Security Checks
high
105285SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3316-1)NessusSuSE Local Security Checks
high
105283SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3313-1)NessusSuSE Local Security Checks
high
105282SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3312-1)NessusSuSE Local Security Checks
high
105281SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3309-1)NessusSuSE Local Security Checks
high
105280SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3308-1)NessusSuSE Local Security Checks
high
105278SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3305-1)NessusSuSE Local Security Checks
high
105277SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3304-1)NessusSuSE Local Security Checks
high
105276SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3303-1)NessusSuSE Local Security Checks
high
105275SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3302-1)NessusSuSE Local Security Checks
high
105274SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3301-1)NessusSuSE Local Security Checks
high
105273SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3299-1)NessusSuSE Local Security Checks
high
105272SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3293-1)NessusSuSE Local Security Checks
high
105271SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3289-1)NessusSuSE Local Security Checks
high
105270SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3287-1)NessusSuSE Local Security Checks
high
105248OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0174) (BlueBorne) (Dirty COW) (Stack Clash)NessusOracleVM Local Security Checks
high
105247Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3659)NessusOracle Linux Local Security Checks
high
105172SUSE SLES11 Security Update : kernel (SUSE-SU-2017:3265-1) (KRACK)NessusSuSE Local Security Checks
critical
105147OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0173) (BlueBorne) (Stack Clash)NessusOracleVM Local Security Checks
high
105145Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3658)NessusOracle Linux Local Security Checks
high
105144Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3657)NessusOracle Linux Local Security Checks
high
104578EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1245)NessusHuawei Local Security Checks
high
104454OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0168)NessusOracleVM Local Security Checks
high
104453OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0167)NessusOracleVM Local Security Checks
high
104374SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2920-1) (KRACK) (Stack Clash)NessusSuSE Local Security Checks
critical
104371Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3637)NessusOracle Linux Local Security Checks
high
104370Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3636)NessusOracle Linux Local Security Checks
high
104369Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3635)NessusOracle Linux Local Security Checks
high
104322Ubuntu 14.04 LTS : linux vulnerabilities (USN-3470-1)NessusUbuntu Local Security Checks
high
104271SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2908-1) (KRACK) (Stack Clash)NessusSuSE Local Security Checks
critical
103365Debian DSA-3981-1 : linux - security update (BlueBorne) (Stack Clash)NessusDebian Local Security Checks
high
103363Debian DLA-1099-1 : linux security update (BlueBorne) (Stack Clash)NessusDebian Local Security Checks
high
103354SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2525-1) (Stack Clash)NessusSuSE Local Security Checks
critical
102922Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-076)NessusVirtuozzo Local Security Checks
high