CVE-2017-2636

HIGH

Description

Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline.

References

http://www.debian.org/security/2017/dsa-3804

http://www.openwall.com/lists/oss-security/2017/03/07/6

http://www.securityfocus.com/bid/96732

http://www.securitytracker.com/id/1037963

https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html

https://access.redhat.com/errata/RHSA-2017:0892

https://access.redhat.com/errata/RHSA-2017:0931

https://access.redhat.com/errata/RHSA-2017:0932

https://access.redhat.com/errata/RHSA-2017:0933

https://access.redhat.com/errata/RHSA-2017:0986

https://access.redhat.com/errata/RHSA-2017:1125

https://access.redhat.com/errata/RHSA-2017:1126

https://access.redhat.com/errata/RHSA-2017:1232

https://access.redhat.com/errata/RHSA-2017:1233

https://access.redhat.com/errata/RHSA-2017:1488

https://bugzilla.redhat.com/show_bug.cgi?id=1428319

Details

Source: MITRE

Published: 2017-03-07

Updated: 2018-01-05

Type: CWE-362

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3.0

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.10.1 (inclusive)

Tenable Plugins

View all (67 total)

IDNameProductFamilySeverity
127325NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0099)NessusNewStart CGSL Local Security Checks
critical
124825EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1502)NessusHuawei Local Security Checks
high
124810EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1486)NessusHuawei Local Security Checks
high
102774OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0145) (Stack Clash)NessusOracleVM Local Security Checks
critical
102773Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3609) (Stack Clash)NessusOracle Linux Local Security Checks
critical
102511Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)NessusOracle Linux Local Security Checks
critical
102317SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2099-1)NessusSuSE Local Security Checks
high
102315SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2096-1)NessusSuSE Local Security Checks
high
102314SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2095-1)NessusSuSE Local Security Checks
high
102312SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2093-1)NessusSuSE Local Security Checks
high
102311SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2092-1)NessusSuSE Local Security Checks
high
102307SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2088-1)NessusSuSE Local Security Checks
high
102254SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2073-1)NessusSuSE Local Security Checks
high
102253SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2072-1)NessusSuSE Local Security Checks
high
102252SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2061-1)NessusSuSE Local Security Checks
high
102251SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2060-1)NessusSuSE Local Security Checks
high
102219SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2049-1)NessusSuSE Local Security Checks
high
101449Virtuozzo 7 : kernel / kernel-abi-whitelists / kernel-debug / etc (VZLSA-2017-0933)NessusVirtuozzo Local Security Checks
high
101443Virtuozzo 6 : kernel / kernel-abi-whitelists / kernel-debug / etc (VZLSA-2017-0892)NessusVirtuozzo Local Security Checks
high
100898RHEL 6 : kernel (RHSA-2017:1488) (Stack Clash)NessusRed Hat Local Security Checks
high
100240RHEL 6 : kernel (RHSA-2017:1233)NessusRed Hat Local Security Checks
high
100239RHEL 6 : kernel (RHSA-2017:1232)NessusRed Hat Local Security Checks
high
100238OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0106)NessusOracleVM Local Security Checks
critical
100235Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3567)NessusOracle Linux Local Security Checks
critical
99913EulerOS 2.0 SP2 : kernel (EulerOS-SA-2017-1066)NessusHuawei Local Security Checks
high
99902EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1057)NessusHuawei Local Security Checks
high
99684RHEL 6 : kernel (RHSA-2017:1126)NessusRed Hat Local Security Checks
high
99683RHEL 7 : kernel (RHSA-2017:1125)NessusRed Hat Local Security Checks
high
99453RHEL 6 : kernel (RHSA-2017:0986)NessusRed Hat Local Security Checks
high
99386Oracle Linux 7 : kernel (ELSA-2017-0933-1)NessusOracle Linux Local Security Checks
high
99383CentOS 7 : kernel (CESA-2017:0933)NessusCentOS Local Security Checks
high
99351Scientific Linux Security Update : kernel on SL7.x x86_64 (20170412)NessusScientific Linux Local Security Checks
high
99346RHEL 7 : kernel (RHSA-2017:0933)NessusRed Hat Local Security Checks
high
99345RHEL 6 : MRG (RHSA-2017:0932)NessusRed Hat Local Security Checks
high
99344RHEL 7 : kernel-rt (RHSA-2017:0931)NessusRed Hat Local Security Checks
high
99338RHEL 6 : kernel (RHSA-2017:0892)NessusRed Hat Local Security Checks
high
99333Oracle Linux 7 : kernel (ELSA-2017-0933)NessusOracle Linux Local Security Checks
high
99316CentOS 6 : kernel (CESA-2017:0892)NessusCentOS Local Security Checks
high
99315Virtuozzo 7 : readykernel-patch (VZA-2017-028)NessusVirtuozzo Local Security Checks
high
99301Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20170411)NessusScientific Linux Local Security Checks
high
99298Oracle Linux 6 : kernel (ELSA-2017-0892)NessusOracle Linux Local Security Checks
high
99181SUSE SLES11 Security Update : kernel (SUSE-SU-2017:0913-1)NessusSuSE Local Security Checks
high
99180SUSE SLES11 Security Update : kernel (SUSE-SU-2017:0912-1)NessusSuSE Local Security Checks
high
99164OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0058)NessusOracleVM Local Security Checks
high
99163OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0057) (Dirty COW)NessusOracleVM Local Security Checks
critical
99162OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0056)NessusOracleVM Local Security Checks
high
99161Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3535)NessusOracle Linux Local Security Checks
high
99160Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3534)NessusOracle Linux Local Security Checks
high
99159Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3533)NessusOracle Linux Local Security Checks
high
99157openSUSE Security Update : the Linux Kernel (openSUSE-2017-419)NessusSuSE Local Security Checks
high
99156openSUSE Security Update : the Linux Kernel (openSUSE-2017-418)NessusSuSE Local Security Checks
high
99092SUSE SLES12 Security Update : kernel (SUSE-SU-2017:0866-1)NessusSuSE Local Security Checks
high
99091SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:0865-1)NessusSuSE Local Security Checks
high
99090SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:0864-1)NessusSuSE Local Security Checks
high
99048F5 Networks BIG-IP : Linux kernel vulnerability (K18015201)NessusF5 Networks Local Security Checks
high
97677Fedora 25 : kernel (2017-387ff46a66)NessusFedora Local Security Checks
high
97675Fedora 24 : kernel (2017-2e1f3694b2)NessusFedora Local Security Checks
high
97640Debian DLA-849-1 : linux security updateNessusDebian Local Security Checks
high
97633Ubuntu 16.04 LTS : linux-aws vulnerability (USN-3220-3)NessusUbuntu Local Security Checks
high
97615Debian DSA-3804-1 : linux - security updateNessusDebian Local Security Checks
high
97608Ubuntu 16.04 LTS : linux-hwe vulnerability (USN-3221-2)NessusUbuntu Local Security Checks
high
97607Ubuntu 16.10 : linux, linux-raspi2 vulnerability (USN-3221-1)NessusUbuntu Local Security Checks
high
97606Ubuntu 14.04 LTS : linux-lts-xenial vulnerability (USN-3220-2)NessusUbuntu Local Security Checks
high
97605Ubuntu 16.04 LTS : linux, linux-gke, linux-raspi2, linux-snapdragon vulnerability (USN-3220-1)NessusUbuntu Local Security Checks
high
97604Ubuntu 12.04 LTS : linux-lts-trusty vulnerability (USN-3219-2)NessusUbuntu Local Security Checks
high
97603Ubuntu 14.04 LTS : linux vulnerability (USN-3219-1)NessusUbuntu Local Security Checks
high
97602Ubuntu 12.04 LTS : linux, linux-ti-omap4 vulnerability (USN-3218-1)NessusUbuntu Local Security Checks
high