CVE-2017-7616

LOW

Description

Incorrect error handling in the set_mempolicy and mbind compat syscalls in mm/mempolicy.c in the Linux kernel through 4.10.9 allows local users to obtain sensitive information from uninitialized stack data by triggering failure of a certain bitmap operation.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cf01fb9985e8deb25ccf0ea54d916b8871ae0e62

http://www.securityfocus.com/bid/97527

http://www.securitytracker.com/id/1038503

https://access.redhat.com/errata/RHSA-2017:1842

https://access.redhat.com/errata/RHSA-2017:2077

https://access.redhat.com/errata/RHSA-2018:1854

https://github.com/torvalds/linux/commit/cf01fb9985e8deb25ccf0ea54d916b8871ae0e62

https://source.android.com/security/bulletin/2017-09-01

Details

Source: MITRE

Published: 2017-04-10

Updated: 2018-06-20

Type: CWE-388

Risk Information

CVSS v2.0

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

CVSS v3.0

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.10.9 (inclusive)

Tenable Plugins

View all (36 total)

ID	Name	Product	Family	Severity
127425	NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0152)	Nessus	NewStart CGSL Local Security Checks	high
124983	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1530)	Nessus	Huawei Local Security Checks	high
124827	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1504)	Nessus	Huawei Local Security Checks	critical
111144	Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2018-4172)	Nessus	Oracle Linux Local Security Checks	high
111022	OracleVM 3.3 : Unbreakable / etc (OVMSA-2018-0237)	Nessus	OracleVM Local Security Checks	high
111021	OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0236)	Nessus	OracleVM Local Security Checks	critical
110998	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4164)	Nessus	Oracle Linux Local Security Checks	high
110997	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4161)	Nessus	Oracle Linux Local Security Checks	critical
110887	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20180619) (Spectre)	Nessus	Scientific Linux Local Security Checks	high
110701	Oracle Linux 6 : kernel (ELSA-2018-1854) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
110694	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2018-041)	Nessus	Virtuozzo Local Security Checks	high
110645	CentOS 6 : kernel (CESA-2018:1854) (Spectre)	Nessus	CentOS Local Security Checks	critical
110600	RHEL 6 : kernel (RHSA-2018:1854) (Spectre)	Nessus	Red Hat Local Security Checks	high
103354	SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2525-1) (Stack Clash)	Nessus	SuSE Local Security Checks	critical
102820	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3406-1)	Nessus	Ubuntu Local Security Checks	high
102734	CentOS 7 : kernel (CESA-2017:1842) (Stack Clash)	Nessus	CentOS Local Security Checks	high
102645	Scientific Linux Security Update : kernel on SL7.x x86_64 (20170801)	Nessus	Scientific Linux Local Security Checks	high
102511	Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	critical
102281	Oracle Linux 7 : kernel (ELSA-2017-1842) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	high
102151	RHEL 7 : kernel-rt (RHSA-2017:2077)	Nessus	Red Hat Local Security Checks	high
102143	RHEL 7 : kernel (RHSA-2017:1842) (Stack Clash)	Nessus	Red Hat Local Security Checks	high
101929	Ubuntu 16.04 LTS : linux-hwe vulnerabilities (USN-3361-1)	Nessus	Ubuntu Local Security Checks	critical
101762	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:1853-1) (Stack Clash)	Nessus	SuSE Local Security Checks	high
100320	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:1360-1)	Nessus	SuSE Local Security Checks	critical
100267	Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3291-3)	Nessus	Ubuntu Local Security Checks	high
100266	Ubuntu 16.04 LTS : linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities (USN-3291-2)	Nessus	Ubuntu Local Security Checks	high
100255	Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3293-1)	Nessus	Ubuntu Local Security Checks	high
100252	Ubuntu 16.04 LTS : linux vulnerabilities (USN-3291-1)	Nessus	Ubuntu Local Security Checks	high
100214	SUSE SLES11 Security Update : kernel (SUSE-SU-2017:1301-1)	Nessus	SuSE Local Security Checks	high
100150	SUSE SLES12 Security Update : kernel (SUSE-SU-2017:1247-1)	Nessus	SuSE Local Security Checks	critical
100106	Amazon Linux AMI : kernel (ALAS-2017-828)	Nessus	Amazon Linux Local Security Checks	high
100044	openSUSE Security Update : the Linux Kernel (openSUSE-2017-562)	Nessus	SuSE Local Security Checks	high
99927	openSUSE Security Update : the Linux Kernel (openSUSE-2017-532)	Nessus	SuSE Local Security Checks	high
99733	Debian DLA-922-1 : linux security update	Nessus	Debian Local Security Checks	high
99424	Fedora 24 : kernel (2017-8e7549fb91)	Nessus	Fedora Local Security Checks	high
99423	Fedora 25 : kernel (2017-26c9ecd7a4)	Nessus	Fedora Local Security Checks	high

CVE-2017-7616

LOW

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

critical

high

high

critical

high

critical

high

high

high

critical

high

critical

high

high

high

critical

high

high

high

critical

high

critical

high

high

high

high

high

critical

high

high

high

high

high

high