Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-5550

Опубликовано: 06 фев. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.1
CVSS3: 5.5

Описание

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision.

РелизСтатусПримечание
artful

not-affected

4.10.0-19.21
bionic

not-affected

4.13.0-16.19
cosmic

not-affected

4.15.0-20.21
devel

not-affected

4.18.0-10.11
esm-infra-legacy/trusty

not-affected

esm-infra/bionic

not-affected

4.13.0-16.19
esm-infra/xenial

not-affected

precise

ignored

end of life
precise/esm

ignored

end of life, was needed
trusty

not-affected

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was needed
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.15.0-1001.1
cosmic

not-affected

4.15.0-1007.7
devel

not-affected

4.18.0-1002.3
esm-infra-legacy/trusty

not-affected

esm-infra/bionic

not-affected

4.15.0-1001.1
esm-infra/xenial

not-affected

precise

DNE

precise/esm

DNE

trusty

not-affected

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.15.0-1002.2
cosmic

not-affected

4.15.0-1009.9
devel

not-affected

4.18.0-1003.3
esm-infra-legacy/trusty

not-affected

4.15.0-1023.24~14.04.1
esm-infra/bionic

not-affected

4.15.0-1002.2
esm-infra/xenial

not-affected

4.11.0-1009.9
precise/esm

DNE

trusty

not-affected

4.15.0-1023.24~14.04.1
trusty/esm

not-affected

4.15.0-1023.24~14.04.1

Показывать по

РелизСтатусПримечание
bionic

not-affected

4.18.0-1004.4~18.04.1
cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

4.18.0-1004.4~18.04.1
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4
xenial

not-affected

4.15.0-1002.2

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.15.0-1001.1
cosmic

not-affected

4.15.0-1006.6
devel

not-affected

4.18.0-1002.3
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

4.15.0-1001.1
esm-infra/xenial

not-affected

4.10.0-1004.4
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

esm-infra/xenial

not-affected

4.10.0-27.30~16.04.2
precise

DNE

precise/esm

DNE

trusty

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.18.0-11.12~18.04.1
cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

4.18.0-11.12~18.04.1
esm-infra/xenial

not-affected

4.10.0-27.30~16.04.2
precise

DNE

precise/esm

DNE

trusty

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.15.0-1002.2
cosmic

not-affected

4.15.0-1008.8
devel

not-affected

4.18.0-1003.3
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

4.15.0-1002.2
esm-infra/xenial

not-affected

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was needed
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [end of standard support]]
precise

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [end of standard support]
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was ignored [end of life, was needed]
precise

DNE

precise/esm

DNE

trusty

ignored

end of standard support, was needed
trusty/esm

ignored

end of life, was needed
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [end of standard support]]
precise

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [end of standard support]
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

not-affected

precise

DNE

precise/esm

DNE

trusty

not-affected

trusty/esm

not-affected

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

not-affected

4.15.0-1002.3
cosmic

not-affected

4.15.0-1004.5
devel

not-affected

4.15.0-1021.24
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

4.15.0-1002.3
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

not-affected

4.10.0-1004.6
bionic

not-affected

4.13.0-1005.5
cosmic

not-affected

4.15.0-1010.11
devel

not-affected

4.18.0-1005.7
esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

РелизСтатусПримечание
artful

DNE

bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was needed
trusty

DNE

trusty/esm

DNE

upstream

released

4.10~rc4

Показывать по

Ссылки на источники

EPSS

Процентиль: 24%
0.0008
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-5550

CVSS3: 3.3
redhat
около 9 лет назад

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision.

nvd логотип

CVE-2017-5550

CVSS3: 5.5
nvd
около 9 лет назад

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision.

debian логотип

CVE-2017-5550

CVSS3: 5.5
debian
около 9 лет назад

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the ...

github логотип

GHSA-c968-9p3g-fq3v

CVSS3: 5.5
github
больше 3 лет назад

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision.

fstec логотип

BDU:2017-00291

CVSS3: 5.5
fstec
около 9 лет назад

Уязвимость операционной системы Linux, позволяющая нарушителю получить конфиденциальную информацию

EPSS

Процентиль: 24%
0.0008
Низкий

2.1 Low

CVSS2

5.5 Medium

CVSS3

Уязвимость CVE-2017-5550