CVE-2017-0861

Опубликовано: 16 нояб. 2017

Источник: debian

EPSS Низкий

Описание

Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.13.4-1		package
linux	fixed	4.9.80-1	stretch	package

Примечания

https://git.kernel.org/linus/362bca57f5d78220f8b5907b875961af9436e229
UAF actually already removed in https://git.kernel.org/linus/e11f0f90a626f93899687b1cc909ee37dd6c5809

EPSS

Процентиль: 27%

0.00089

Низкий

Связанные уязвимости

CVE-2017-0861

CVSS3: 7.8

ubuntu

больше 7 лет назад

Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

CVE-2017-0861

CVSS3: 7

redhat

больше 7 лет назад

Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

CVE-2017-0861

CVSS3: 7.8

nvd

больше 7 лет назад

Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

GHSA-pxhw-6q9j-34m8

CVSS3: 7.8

github

около 3 лет назад

Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

SUSE-SU-2018:1273-1

suse-cvrf

около 7 лет назад

Security update for the Linux Kernel (Live Patch 29 for SLE 12)

EPSS

Процентиль: 27%

0.00089

Низкий