CVE-2017-6214

Опубликовано: 07 фев. 2017

Источник: redhat

CVSS3: 6.5

Описание

The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag.

A flaw was found in the Linux kernel's handling of packets with the URG flag. Applications using the splice() and tcp_splice_read() functionality could allow a remote attacker to force the kernel to enter a condition in which it could loop indefinitely.

Отчет

This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5 as the code with the flaw is not present in the products listed. This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG-2. Future Linux kernel updates for the respective releases might address this issue.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Fixed	RHSA-2017:1372	30.05.2017
Red Hat Enterprise Linux 7	kernel-rt	Fixed	RHSA-2017:1616	28.06.2017
Red Hat Enterprise Linux 7	kernel	Fixed	RHSA-2017:1615	28.06.2017
Red Hat Enterprise MRG 2	kernel-rt	Fixed	RHSA-2017:1647	28.06.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=1426542kernel: ipv4/tcp: Infinite loop in tcp_splice_read()

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-6214

CVSS3: 7.5

ubuntu

больше 8 лет назад

CVE-2017-6214

CVSS3: 7.5

nvd

больше 8 лет назад

CVE-2017-6214

CVSS3: 7.5

debian

больше 8 лет назад

The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel bef ...

GHSA-7v6r-j8w7-v48j

CVSS3: 7.5

github

около 3 лет назад

ELSA-2017-1372

oracle-oval

около 8 лет назад

ELSA-2017-1372: kernel security and bug fix update (MODERATE)

6.5 Medium

CVSS3