CVE-2017-12193

MEDIUM

Description

The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL pointer dereference and panic) via a crafted application, as demonstrated by the keyring key type, and key addition and link creation operations.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ea6789980fdaa610d7eb63602c746bf6ec70cd2b

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11

http://www.securityfocus.com/bid/101678

https://access.redhat.com/errata/RHSA-2018:0151

https://bugzilla.redhat.com/show_bug.cgi?id=1501215

https://github.com/torvalds/linux/commit/ea6789980fdaa610d7eb63602c746bf6ec70cd2b

https://usn.ubuntu.com/3698-1/

https://usn.ubuntu.com/3698-2/

Details

Source: MITRE

Published: 2017-11-22

Updated: 2018-07-13

Type: CWE-476

Risk Information

CVSS v2.0

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3.0

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Tenable Plugins

View all (34 total)

ID	Name	Product	Family	Severity
127165	NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0014)	Nessus	NewStart CGSL Local Security Checks	high
124976	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1523)	Nessus	Huawei Local Security Checks	critical
124822	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1499)	Nessus	Huawei Local Security Checks	high
110900	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3698-1)	Nessus	Ubuntu Local Security Checks	medium
109158	OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0035) (Dirty COW) (Meltdown) (Spectre)	Nessus	OracleVM Local Security Checks	high
109156	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4071) (Dirty COW) (Meltdown) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
106706	OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0017) (Meltdown)	Nessus	OracleVM Local Security Checks	high
106670	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4025) (Meltdown)	Nessus	Oracle Linux Local Security Checks	high
106525	RHEL 6 : kernel-rt (RHSA-2018:0181)	Nessus	Red Hat Local Security Checks	high
106364	Oracle Linux 7 : kernel (ELSA-2018-0151) (Meltdown) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
106353	CentOS 7 : kernel (CESA-2018:0151) (Meltdown) (Spectre)	Nessus	CentOS Local Security Checks	high
106340	Scientific Linux Security Update : kernel on SL7.x x86_64 (20180125) (Meltdown) (Spectre)	Nessus	Scientific Linux Local Security Checks	high
106331	RHEL 7 : kernel-rt (RHSA-2018:0152)	Nessus	Red Hat Local Security Checks	high
106330	RHEL 7 : kernel (RHSA-2018:0151) (Meltdown) (Spectre)	Nessus	Red Hat Local Security Checks	high
106167	EulerOS 2.0 SP2 : kernel (EulerOS-SA-2018-1026)	Nessus	Huawei Local Security Checks	high
105996	Fedora 27 : kernel (2017-ef58cbde27)	Nessus	Fedora Local Security Checks	medium
105461	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:3410-1)	Nessus	SuSE Local Security Checks	high
105460	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:3398-1)	Nessus	SuSE Local Security Checks	high
105364	openSUSE Security Update : the Linux Kernel (openSUSE-2017-1391) (Dirty COW)	Nessus	SuSE Local Security Checks	high
105355	Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws regression (USN-3509-4) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105354	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2 regression (USN-3509-3) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105344	openSUSE Security Update : the Linux Kernel (openSUSE-2017-1390) (Dirty COW)	Nessus	SuSE Local Security Checks	high
105150	SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3249-1) (Dirty COW)	Nessus	SuSE Local Security Checks	high
105105	Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws vulnerabilities (USN-3509-2) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105104	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-3509-1) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105101	Ubuntu 16.04 LTS : linux-gcp vulnerabilities (USN-3507-2) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105100	Ubuntu 17.10 : linux, linux-raspi2 vulnerabilities (USN-3507-1) (Dirty COW)	Nessus	Ubuntu Local Security Checks	high
105046	EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1318)	Nessus	Huawei Local Security Checks	high
105020	SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3210-1) (Dirty COW)	Nessus	SuSE Local Security Checks	high
104707	Amazon Linux AMI : kernel (ALAS-2017-925)	Nessus	Amazon Linux Local Security Checks	high
104500	Virtuozzo 7 : readykernel-patch (VZA-2017-102)	Nessus	Virtuozzo Local Security Checks	medium
104499	Virtuozzo 7 : readykernel-patch (VZA-2017-101)	Nessus	Virtuozzo Local Security Checks	medium
104448	Fedora 26 : kernel (2017-9fbb35aeda)	Nessus	Fedora Local Security Checks	medium
104444	Fedora 25 : kernel (2017-38b37120a2)	Nessus	Fedora Local Security Checks	medium

CVE-2017-12193

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

critical

high

medium

high

high

high

high

high

high

high

high

high

high

high

medium

high

high

high

high

high

high

high

high

high

high

high

high

high

high

medium

medium

medium

medium