CVE-2017-18549

Опубликовано: 18 авг. 2019

Источник: redhat

CVSS3: 5.5

Описание

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_send_raw_srb does not initialize the reply structure.

A flaw was found in the Linux kernel in the aac_send_raw_srb and aac_get_hba_info in drivers/scsi/aacraid/commctrl.c in the SCSI, where an uninitialized variable could copy stack-allocated structs to userspace without initializing its member's variables. This flaw can lead to the exposure of kernel stack memory. Clearing the memory by memset to ZERO at initialization can prevent information leaks.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-alt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise MRG 2	kernel	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-200

https://bugzilla.redhat.com/show_bug.cgi?id=1757363kernel: information exposure in drivers/scsi/aacraid/commctrl.c

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-18549

CVSS3: 5.5

ubuntu

больше 6 лет назад

CVE-2017-18549

CVSS3: 5.5

nvd

больше 6 лет назад

CVE-2017-18549

CVSS3: 5.5

debian

больше 6 лет назад

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linu ...

GHSA-cmvx-3jjv-xr97

CVSS3: 5.5

github

больше 3 лет назад

5.5 Medium

CVSS3