CVE-2017-7895

critical
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

References

http://www.debian.org/security/2017/dsa-3886

http://www.securityfocus.com/bid/98085

https://access.redhat.com/errata/RHSA-2017:1615

https://access.redhat.com/errata/RHSA-2017:1616

https://access.redhat.com/errata/RHSA-2017:1647

https://access.redhat.com/errata/RHSA-2017:1715

https://access.redhat.com/errata/RHSA-2017:1723

https://access.redhat.com/errata/RHSA-2017:1766

https://access.redhat.com/errata/RHSA-2017:1798

https://access.redhat.com/errata/RHSA-2017:2412

https://access.redhat.com/errata/RHSA-2017:2428

https://access.redhat.com/errata/RHSA-2017:2429

https://access.redhat.com/errata/RHSA-2017:2472

https://access.redhat.com/errata/RHSA-2017:2732

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=13bf9fbff0e5e099e2b6f003a0ab8ae145436309

https://github.com/torvalds/linux/commit/13bf9fbff0e5e099e2b6f003a0ab8ae145436309

Details

Source: MITRE

Published: 2017-04-28

Updated: 2019-10-03

Type: CWE-119

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 3.9

Severity: CRITICAL

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.10.13 (inclusive)

Tenable Plugins

View all (48 total)

IDNameProductFamilySeverity
127325NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0099)NessusNewStart CGSL Local Security Checks
critical
124974EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1521)NessusHuawei Local Security Checks
critical
124827EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1504)NessusHuawei Local Security Checks
critical
106469OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0015) (BlueBorne) (Meltdown) (Spectre) (Stack Clash)NessusOracleVM Local Security Checks
critical
103243RHEL 6 : kernel (RHSA-2017:2732) (BlueBorne)NessusRed Hat Local Security Checks
critical
102774OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0145) (Stack Clash)NessusOracleVM Local Security Checks
critical
102773Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3609) (Stack Clash)NessusOracle Linux Local Security Checks
critical
102511Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)NessusOracle Linux Local Security Checks
critical
102305RHEL 6 : kernel (RHSA-2017:2429)NessusRed Hat Local Security Checks
critical
102304RHEL 6 : kernel (RHSA-2017:2428)NessusRed Hat Local Security Checks
critical
102159RHEL 5 : kernel (RHSA-2017:2412)NessusRed Hat Local Security Checks
critical
102064OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0126) (Stack Clash)NessusOracleVM Local Security Checks
critical
102059Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3595) (Stack Clash)NessusOracle Linux Local Security Checks
critical
101939RHEL 6 : kernel (RHSA-2017:1798)NessusRed Hat Local Security Checks
critical
101929Ubuntu 16.04 LTS : linux-hwe vulnerabilities (USN-3361-1)NessusUbuntu Local Security Checks
critical
101928Ubuntu 14.04 LTS : linux vulnerabilities (USN-3360-1)NessusUbuntu Local Security Checks
critical
101894Ubuntu 16.10 : linux, linux-raspi2 vulnerabilities (USN-3359-1)NessusUbuntu Local Security Checks
critical
101799RHEL 7 : kernel (RHSA-2017:1766)NessusRed Hat Local Security Checks
critical
101489CentOS 6 : kernel (CESA-2017:1723)NessusCentOS Local Security Checks
critical
101388Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20170711)NessusScientific Linux Local Security Checks
critical
101386RHEL 6 : kernel (RHSA-2017:1723)NessusRed Hat Local Security Checks
critical
101384RHEL 6 : kernel (RHSA-2017:1715)NessusRed Hat Local Security Checks
critical
101383Oracle Linux 6 : kernel (ELSA-2017-1723)NessusOracle Linux Local Security Checks
critical
101200OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0121)NessusOracleVM Local Security Checks
critical
101139Oracle Linux 7 : kernel (ELSA-2017-1615)NessusOracle Linux Local Security Checks
critical
101138Oracle Linux 7 : kernel (ELSA-2017-1615-1) (Stack Clash)NessusOracle Linux Local Security Checks
high
101120CentOS 7 : kernel (CESA-2017:1615)NessusCentOS Local Security Checks
critical
101105Scientific Linux Security Update : kernel on SL7.x x86_64 (20170628)NessusScientific Linux Local Security Checks
critical
101103RHEL 6 : MRG (RHSA-2017:1647) (Stack Clash)NessusRed Hat Local Security Checks
critical
101102RHEL 7 : kernel-rt (RHSA-2017:1616) (Stack Clash)NessusRed Hat Local Security Checks
critical
101101RHEL 7 : kernel (RHSA-2017:1615)NessusRed Hat Local Security Checks
critical
100877Debian DSA-3886-1 : linux - security update (Stack Clash)NessusDebian Local Security Checks
critical
100876Debian DLA-993-2 : linux regression update (Stack Clash)NessusDebian Local Security Checks
critical
100668Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3314-1)NessusUbuntu Local Security Checks
critical
100665Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3312-2)NessusUbuntu Local Security Checks
critical
100664Ubuntu 16.04 LTS : linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities (USN-3312-1)NessusUbuntu Local Security Checks
critical
100598Virtuozzo 7 : readykernel-patch (VZA-2017-042)NessusVirtuozzo Local Security Checks
critical
100466Virtuozzo 7 : readykernel-patch (VZA-2017-038)NessusVirtuozzo Local Security Checks
critical
100451Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3576)NessusOracle Linux Local Security Checks
critical
100238OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0106)NessusOracleVM Local Security Checks
critical
100237OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0105)NessusOracleVM Local Security Checks
critical
100236OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0104)NessusOracleVM Local Security Checks
critical
100235Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3567)NessusOracle Linux Local Security Checks
critical
100234Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3566)NessusOracle Linux Local Security Checks
critical
100233Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3565)NessusOracle Linux Local Security Checks
critical
100132Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-037)NessusVirtuozzo Local Security Checks
critical
100080Fedora 25 : kernel (2017-b9b1ac0d15)NessusFedora Local Security Checks
critical
100078Fedora 24 : kernel (2017-ad045f80ac)NessusFedora Local Security Checks
critical