CVE-2017-18379

Опубликовано: 27 июл. 2019

Источник: redhat

CVSS3: 7

Описание

In the Linux kernel before 4.14, an out of boundary access happened in drivers/nvme/target/fc.c.

A flaw was found in the Linux kernel’s implementation of NVME over a fiber connection. A local attacker could use this flaw to create a situation in which specially crafted requests could corrupt memory or possibly escalate privileges.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-alt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise MRG 2	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-787

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1735637kernel: out of bound access in drivers/nvme/target/fc.c

7 High

CVSS3

Связанные уязвимости

CVE-2017-18379

CVSS3: 9.8

ubuntu

больше 6 лет назад

In the Linux kernel before 4.14, an out of boundary access happened in drivers/nvme/target/fc.c.

CVE-2017-18379

CVSS3: 9.8

nvd

больше 6 лет назад

In the Linux kernel before 4.14, an out of boundary access happened in drivers/nvme/target/fc.c.

CVE-2017-18379

CVSS3: 9.8

debian

больше 6 лет назад

In the Linux kernel before 4.14, an out of boundary access happened in ...

GHSA-fggm-9h4q-ppg4

CVSS3: 9.8

github

больше 3 лет назад

In the Linux kernel before 4.14, an out of boundary access happened in drivers/nvme/target/fc.c.

SUSE-SU-2019:2600-1

suse-cvrf

больше 6 лет назад

Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3)

7 High

CVSS3