DEBIAN-CVE-2017-2618

DEBIAN-CVE-2017-2618 PUBLISHED CVSS 5.5 MEDIUM

A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr files before 4.9.10. An empty (null) write to this file can crash the system by causing the system to attempt to access unmapped kernel memory.

Risk Scores

CVSS v3.0

5.5

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Debian:12	linux	0, 0, 0
Debian:14	linux	0, 0, 0
Debian:13	linux	0, 0, 0
Debian:11	linux	0, 0, 0

Timeline

Jul 27, 2018 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2017-2618 advisory

Open in Interactive Console →