F5 Networks BIG-IP : Linux kernel vulnerability (K54610514)
High Nessus Plugin ID 104307
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe sg implementation in the Linux kernel through 4.9 does not properly restrict write operations in situations where the KERNEL_DS option is set, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device, related to block/bsg.c and drivers/scsi/sg.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9576. (CVE-2016-10088)
This vulnerability may allowlocally authenticated users to read or write to arbitrary kernel memory locations or cause a denial of service (DoS).
Note : The exploit requires local shell access and can provide a user with root access to the system. On BIG-IP systems, shell access includes root privileges, making this exploit unnecessary.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K54610514.