CVE-2017-18270

Опубликовано: 18 мая 2018

Источник: debian

EPSS Низкий

Описание

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.13.10-1		package
linux	fixed	4.9.65-1	stretch	package
linux	fixed	3.16.56-1	jessie	package
linux	fixed	3.2.101-1	wheezy	package

Примечания

Fixed by: https://git.kernel.org/linus/237bbd29f7a049d310d907f4b2716a7feef9abf3 (4.14-rc3)

EPSS

Процентиль: 3%

0.00018

Низкий

Связанные уязвимости

CVE-2017-18270

CVSS3: 7.1

ubuntu

около 7 лет назад

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

CVE-2017-18270

CVSS3: 4.4

redhat

почти 8 лет назад

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

CVE-2017-18270

CVSS3: 7.1

nvd

около 7 лет назад

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

GHSA-r6j7-prqg-pp3v

CVSS3: 7.1

github

около 3 лет назад

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

ELSA-2022-9852

oracle-oval

больше 2 лет назад

ELSA-2022-9852: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 3%

0.00018

Низкий