CVE-2017-9075

HIGH

Description

The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdcee2cbb8438702ea1b328fb6e0ac5e9a40c7f8

http://www.debian.org/security/2017/dsa-3886

http://www.securityfocus.com/bid/98597

https://access.redhat.com/errata/RHSA-2017:1842

https://access.redhat.com/errata/RHSA-2017:2077

https://access.redhat.com/errata/RHSA-2017:2669

https://access.redhat.com/errata/RHSA-2018:1854

https://github.com/torvalds/linux/commit/fdcee2cbb8438702ea1b328fb6e0ac5e9a40c7f8

https://patchwork.ozlabs.org/patch/763569/

https://source.android.com/security/bulletin/2017-10-01

Details

Source: MITRE

Published: 2017-05-19

Updated: 2019-10-03

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3.0

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.11.1 (inclusive)

Tenable Plugins

View all (65 total)

ID	Name	Product	Family	Severity
127323	NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0098)	Nessus	NewStart CGSL Local Security Checks	high
124984	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1531)	Nessus	Huawei Local Security Checks	high
124827	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1504)	Nessus	Huawei Local Security Checks	critical
121698	Photon OS 1.0: Linux PHSA-2017-0019	Nessus	PhotonOS Local Security Checks	high
118617	F5 Networks BIG-IP : Linux kernel vulnerability (K02236463)	Nessus	F5 Networks Local Security Checks	high
111868	Photon OS 1.0: Linux PHSA-2017-0019 (deprecated)	Nessus	PhotonOS Local Security Checks	critical
110887	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20180619) (Spectre)	Nessus	Scientific Linux Local Security Checks	high
110701	Oracle Linux 6 : kernel (ELSA-2018-1854) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
110645	CentOS 6 : kernel (CESA-2018:1854) (Spectre)	Nessus	CentOS Local Security Checks	critical
110600	RHEL 6 : kernel (RHSA-2018:1854) (Spectre)	Nessus	Red Hat Local Security Checks	high
106469	OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0015) (BlueBorne) (Meltdown) (Spectre) (Stack Clash)	Nessus	OracleVM Local Security Checks	critical
105248	OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0174) (BlueBorne) (Dirty COW) (Stack Clash)	Nessus	OracleVM Local Security Checks	high
105247	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3659) (BlueBorne) (Dirty COW) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	high
105147	OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0173) (BlueBorne) (Stack Clash)	Nessus	OracleVM Local Security Checks	high
105145	Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3658) (BlueBorne) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	high
105144	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3657) (BlueBorne) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	high
104454	OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0168)	Nessus	OracleVM Local Security Checks	high
104374	SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2920-1) (KRACK) (Stack Clash)	Nessus	SuSE Local Security Checks	critical
104371	Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3637)	Nessus	Oracle Linux Local Security Checks	high
104370	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3636)	Nessus	Oracle Linux Local Security Checks	high
104271	SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2908-1) (KRACK) (Stack Clash)	Nessus	SuSE Local Security Checks	critical
103354	SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2525-1) (Stack Clash)	Nessus	SuSE Local Security Checks	critical
103110	SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2389-1) (Stack Clash)	Nessus	SuSE Local Security Checks	high
103046	RHEL 6 : MRG (RHSA-2017:2669)	Nessus	Red Hat Local Security Checks	high
102734	CentOS 7 : kernel (CESA-2017:1842) (Stack Clash)	Nessus	CentOS Local Security Checks	high
102645	Scientific Linux Security Update : kernel on SL7.x x86_64 (20170801)	Nessus	Scientific Linux Local Security Checks	high
102511	Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	critical
102281	Oracle Linux 7 : kernel (ELSA-2017-1842) (Stack Clash)	Nessus	Oracle Linux Local Security Checks	high
102151	RHEL 7 : kernel-rt (RHSA-2017:2077)	Nessus	Red Hat Local Security Checks	high
102143	RHEL 7 : kernel (RHSA-2017:1842) (Stack Clash)	Nessus	Red Hat Local Security Checks	high
101853	EulerOS 2.0 SP2 : kernel (EulerOS-SA-2017-1123)	Nessus	Huawei Local Security Checks	high
101852	EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1122)	Nessus	Huawei Local Security Checks	high
101762	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:1853-1) (Stack Clash)	Nessus	SuSE Local Security Checks	high
101156	Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3345-1)	Nessus	Ubuntu Local Security Checks	high
101155	Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3344-2)	Nessus	Ubuntu Local Security Checks	high
101154	Ubuntu 16.04 LTS : linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities (USN-3344-1)	Nessus	Ubuntu Local Security Checks	high
101153	Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-3343-2)	Nessus	Ubuntu Local Security Checks	critical
101152	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3343-1)	Nessus	Ubuntu Local Security Checks	high
101151	Ubuntu 16.04 LTS : linux-hwe vulnerabilities (USN-3342-2)	Nessus	Ubuntu Local Security Checks	high
101150	Ubuntu 16.10 : linux, linux-raspi2 vulnerabilities (USN-3342-1)	Nessus	Ubuntu Local Security Checks	high
100999	Amazon Linux AMI : kernel (ALAS-2017-846)	Nessus	Amazon Linux Local Security Checks	high
100933	Ubuntu 14.04 LTS : linux, linux-meta vulnerabilities (USN-3335-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100932	Ubuntu 14.04 LTS : linux-lts-xenial, linux-meta-lts-xenial vulnerabilities (USN-3334-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100931	Ubuntu 16.04 LTS : linux-hwe, linux-meta-hwe vulnerabilities (USN-3333-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100930	Ubuntu 16.04 LTS : linux-meta-raspi2, linux-raspi2 vulnerabilities (USN-3332-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100929	Ubuntu 16.04 LTS : linux-aws, linux-meta-aws vulnerabilities (USN-3331-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100928	Ubuntu 16.04 LTS : linux-meta-snapdragon, linux-snapdragon vulnerabilities (USN-3330-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100927	Ubuntu 16.04 LTS : linux-gke, linux-meta-gke vulnerabilities (USN-3329-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100926	Ubuntu 16.04 LTS : linux, linux-meta vulnerabilities (USN-3328-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100925	Ubuntu 16.10 : linux-meta-raspi2, linux-raspi2 vulnerabilities (USN-3327-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100924	Ubuntu 16.10 : linux, linux-meta vulnerabilities (USN-3326-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100923	Ubuntu 17.04 : linux-meta-raspi2, linux-raspi2 vulnerabilities (USN-3325-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100922	Ubuntu 17.04 : linux, linux-meta vulnerabilities (USN-3324-1) (Stack Clash)	Nessus	Ubuntu Local Security Checks	high
100877	Debian DSA-3886-1 : linux - security update (Stack Clash)	Nessus	Debian Local Security Checks	critical
100876	Debian DLA-993-2 : linux regression update (Stack Clash)	Nessus	Debian Local Security Checks	critical
100798	Fedora 24 : kernel (2017-6554692044)	Nessus	Fedora Local Security Checks	high
100769	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-047)	Nessus	Virtuozzo Local Security Checks	high
100711	openSUSE Security Update : the Linux Kernel (openSUSE-2017-666)	Nessus	SuSE Local Security Checks	high
100601	Virtuozzo 7 : readykernel-patch (VZA-2017-045)	Nessus	Virtuozzo Local Security Checks	high
100600	Virtuozzo 7 : readykernel-patch (VZA-2017-044)	Nessus	Virtuozzo Local Security Checks	high
100599	Virtuozzo 7 : readykernel-patch (VZA-2017-043)	Nessus	Virtuozzo Local Security Checks	high
100598	Virtuozzo 7 : readykernel-patch (VZA-2017-042)	Nessus	Virtuozzo Local Security Checks	critical
100563	Fedora 25 : kernel (2017-6f06be3fe9)	Nessus	Fedora Local Security Checks	high
100491	Fedora 24 : kernel (2017-85744f8aa9)	Nessus	Fedora Local Security Checks	high
100435	Fedora 25 : kernel (2017-273b67d5ee)	Nessus	Fedora Local Security Checks	high

CVE-2017-9075

HIGH

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

critical

high

high

critical

high

high

critical

high

critical

high

high

high

high

high

high

critical

high

high

critical

critical

high

high

high

high

critical

high

high

high

high

high

high

high

high

high

critical

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

critical

critical

high

high

high

high

high

high

critical

high

high

high