VDB

GCVE-VVD-MAGEIA-2017-383

GCVE-VVD-MAGEIA-2017-383
Advisory Published
Vulnetix · Advisory published October 24, 2017
This kernel-linus update is based on upstream 4.9.56 and fixes at least the following security issues: A flaw was found in the way the Linux KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest (CVE-2017-7518). A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic information. As a result, up to 100 bytes of the slab data could be leaked to a userspace (CVE-2017-7558). A security flaw was discovered in nl80211_set_rekey_data() function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink request. This request can be issued by a user with CAP_NET_ADMIN privilege and may result in NULL dereference and a system crash (CVE-2017-12153). Linux kernel built with the KVM visualization support (CONFIG_KVM), with nested visualization (nVMX) feature enabled (nested=1), is vulnerable to a crash due to disabled external interrupts. As L2 guest could acce s (r/w) hardware CR8 register of the host(L0). In a nested visualization setup, L2 guest user could use this flaw to potentially crash the host(L0) resulting in DoS (CVE-2017-12154). The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path (CVE-2017-14106). The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading locations associated with padding bytes (CVE-2017-14156). It was found that the iscsi_if_rx() function in scsi_transport_iscsi.c in the Linux kernel since v2.6.24-rc1 through 4.13.2 allows local users to cause a denial of service (a system panic) by making a number of certain syscalls by leveraging incorrect length validation in the kernel code (CVE-2017-14489). The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SG_GET_REQUEST_TABLE ioctl call for /dev/sg0 (CVE-2017-14991). The tpacket_rcv() function in 'net/packet/af_packet.c' file in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service (buffer overflow, and disk and memory corruption) or possibly have unspecified other impact via crafted system calls (CVE-2017-14497). A reachable assertion failure flaw was found in the Linux kernel built with KVM virtualisation(CONFIG_KVM) support with Virtual Function I/O feature (CONFIG_VFIO) enabled. This failure could occur if a malicious guest device sent a virtual interrupt (guest IRQ) with a larger (>1024) index value (CVE-2017-1000252). For other upstream fixes in this update, read the referenced changelogs.

Affected Products

VendorProductVersionsPlatforms
Mageiakernel-linus0 (affected), 4.9.56-1.mga6 (unaffected)

Aliases

Transitive aliases

CVE-2018-10840GSD-2018-10902BDU:2017-02270BDU:2017-02268EUVD-2018-2940EUVD-2018-17161BDU:2019-01344GHSA-4jqv-ffjp-jw6vEUVD-2017-8164CVE-2018-12896EUVD-2018-6524BDU:2021-01415EUVD-2018-18307CVE-2018-14641CVE-2017-15265CVE-2017-13088GHSA-8x9x-6w2w-w9h8VVD-MAGEIA-2017-379EUVD-2017-4602ALAS-2018-1086BDU:2019-01058CVE-2018-13094EUVD-2018-4857SUSE-SU-2018:1217-1GHSA-873h-38h4-56jxEUVD-2017-1140GSD-2017-17863GHSA-p984-v28j-p56qEUVD-2017-9011CVE-2017-13084CVE-2018-15594CNVD-2017-30397ALAS2-2018-994EUVD-2017-16535EUVD-2017-5618GHSA-fr9c-f69x-fpvfcisco-sa-20171016-wpaCVE-2017-9417CVE-2016-0801CVE-2018-6555GHSA-mxrv-cp62-8842CVE-2017-18344CVE-2018-6554ALAS-2018-1048VVD-MAGEIA-2018-340BDU:2021-01436BDU:2019-01055GHSA-jw6w-m4jf-m6xpGHSA-fwvw-9m43-mj3mGHSA-3xm5-vf98-cwqxBDU:2021-01418RHSA-2019:0415VVD-MAGEIA-2018-296CVE-2018-13405CVE-2018-14678GHSA-496w-f8vc-3275CVE-2018-14634EUVD-2018-6537ALAS-2019-1280CVE-2018-8897GHSA-289m-2pf5-x59pEUVD-2018-11762ALAS-2018-971EUVD-2018-7349CVE-2017-0561BDU:2017-02264BDU:2017-02269GHSA-jrh4-2f65-vc34CVE-2018-1108GHSA-vx6h-cqmq-qj84GHSA-2jfx-4v33-68mfEUVD-2018-8956GHSA-wjj9-4g79-4c2cEUVD-2018-11741EUVD-2018-11720EUVD-2018-10173SUSE-SU-2018:2963-1GHSA-j2cv-h77g-5p95GHSA-xfrv-5h7j-4qvxCVE-2018-10675BDU:2019-02512VVD-MAGEIA-2018-374GHSA-rhjq-jcf3-f32gGHSA-843x-7h9r-xpf8H1-286740VVD-MAGEIA-2017-472CVE-2018-16276CVE-2018-10881GHSA-fw8c-q6fq-37rgCVE-2018-9363GHSA-rgw3-fq9h-vvg7VVD-MAGEIA-2018-63CVE-2018-13093BDU:2017-02272GHSA-55f7-p7jv-3448EUVD-2017-8999EUVD-2017-0915ALAS-2018-1049GHSA-fr39-wf38-f5w3EUVD-2018-15469EUVD-2017-3763CVE-2018-10940VVD-MAGEIA-2018-418GHSA-qv83-77rj-635jGHSA-qj7r-58vw-6wwwCNVD-2017-30406BDU:2019-01060VVD-MAGEIA-2018-324EUVD-2018-18306GHSA-p95m-33p3-2qfrEUVD-2017-4732SUSE-SU-2018:2960-1SUSE-SU-2018:2858-1EUVD-2017-9002GHSA-gcfj-hpmm-x9xfGHSA-hwv5-xg68-86fhALAS2-2018-1023RHSA-2019:0641GHSA-xpjw-vcgc-qx6pGHSA-j658-wqr4-q3w7GHSA-8r3h-6rgp-rrqmCVE-2018-10882GHSA-4994-8w6g-9jvwCNVD-2017-30405CVE-2018-3646EUVD-2017-9348CVE-2017-17852CVE-2018-10878CVE-2018-14734BDU:2017-02265SUSE-SU-2021:0452-1GHSA-45mv-5p9c-6w7cGHSA-9pwc-v5p9-3c37CNVD-2017-14425EUVD-2018-2959CVE-2018-1118CVE-2018-18281SUSE-SU-2018:2538-1GHSA-h9mf-j5vf-pc99BDU:2019-02508CVE-2018-1068VVD-MAGEIA-2018-337SUSE-SU-2018:1048-1SUSE-SU-2018:3084-1EUVD-2017-6725GHSA-fhr3-fj6p-xhpfEUVD-2018-2946GHSA-3rm8-9cxg-8m49BDU:2019-01056GHSA-rm5p-g62j-4fc3VVD-MAGEIA-2018-64BDU:2017-02267GHSA-mq9x-53x3-39h5BDU:2017-02271CNVD-2017-30404CNVD-2017-30402BDU:2017-00893EUVD-2017-5667GHSA-q7q6-h2q3-86p9GHSA-899p-w494-v855EUVD-2017-9000EUVD-2017-1513CVE-2017-17854GHSA-cr4j-59jc-xqhgEUVD-2017-9469BDU:2019-01057CVE-2018-20856GHSA-grv8-gqh3-fmc9CVE-2017-12188ALAS2-2018-1086GHSA-752f-2m5c-7473CVE-2018-12904GSD-2018-6412CVE-2018-5391ALAS2-2018-1058GHSA-c688-2x49-65h9EUVD-2017-9003GHSA-wxv4-3q58-w3mxGHSA-f8g5-rmc4-j74gCVE-2018-10901EUVD-2018-19707SUSE-SU-2018:2940-1EUVD-2017-4605EUVD-2018-4849BDU:2019-01059EUVD-2018-2942GHSA-qwp3-c8jm-p6v6CVE-2018-1087VVD-MAGEIA-2017-387GHSA-2wr3-w5rh-2qx4CVE-2017-17856BDU:2017-02266GHSA-ggjw-r373-gj64GHSA-qvr8-f9g3-wv5xCVE-2018-3615CNVD-2018-03941VVD-MAGEIA-2018-373BDU:2019-00977GHSA-hwr9-p63p-wq87VVD-CERTCC-2017-228519EUVD-2017-4598GHSA-88jq-244c-4xj3EUVD-2017-4597GHSA-5qx2-85hg-v5crCNVD-2018-07889EUVD-2018-20505CVE-2017-16996CVE-2017-17862SUSE-SU-2018:3029-1CVE-2017-13080GHSA-88p5-45fx-5x87EUVD-2018-20957SUSE-SU-2018:2787-1CNVD-2018-17431SUSE-SU-2018:2962-1GHSA-5fh3-v3jw-rc9hEUVD-2018-17160ALAS-2018-1058EUVD-2018-18169EUVD-2017-4595ALAS-2018-1087CVE-2017-18216ALAS2-2018-971VVD-MAGEIA-2018-417BDU:2020-00735CVE-2018-10879CNVD-2017-30399GSD-2018-1091EUVD-2017-9004CVE-2018-10877BDU:2017-01325GHSA-4hq8-f3mj-m9wcEUVD-2018-8128BDU:2021-01420SUSE-SU-2018:2862-1CVE-2018-17182GHSA-fx3c-8pqx-5v4cEUVD-2018-2943ALAS2-2019-1281GHSA-v788-jmxr-wgj9CVE-2018-15471EUVD-2018-11754GHSA-c3vm-qh5c-27gqEUVD-2017-4606GHSA-vhcx-55j8-pv9cEUVD-2018-2922EUVD-2018-6620VVD-MAGEIA-2017-467CVE-2017-17864CNVD-2017-38518GHSA-9x5q-ww2j-jw9xEUVD-2017-4604EUVD-2018-2947BDU:2019-00979GHSA-6q2v-x4cv-ghqxGHSA-j9fr-8f9m-c9qcGHSA-gwvj-5r5w-vc2gEUVD-2018-1874BDU:2019-03124SUSE-SU-2018:2961-1GHSA-9w6j-7396-jgw4VVD-MAGEIA-2017-466VVD-MAGEIA-2018-419VVD-MAGEIA-2018-391SUSE-SU-2018:2860-1SUSE-SU-2018:2539-1CVE-2017-16995CVE-2017-13077CVE-2018-15572EUVD-2016-0812EUVD-2018-7446EUVD-2018-6541EUVD-2018-15500GHSA-8j5h-gvcc-pfhwEUVD-2017-5992CVE-2017-17855CVE-2017-13082GHSA-gh8r-7rf7-w4rgALAS2-2018-1051GHSA-mw8q-cf75-7f35CVE-2017-16939VVD-MAGEIA-2017-381GHSA-9c72-6vp8-jx77GHSA-jq36-53qv-7v3mEUVD-2018-2945GHSA-2gc2-cm86-3pjxEUVD-2018-2909EUVD-2018-11737EUVD-2018-15474CVE-2017-17853CVE-2018-16658GHSA-pvv9-p2gj-w426EUVD-2018-7468CVE-2018-3620GHSA-gffw-ppmc-p7r6EUVD-2018-10016CVE-2017-13086BDU:2017-02263SUSE-SU-2018:2864-1GHSA-cc5r-x8fh-jwv3CVE-2017-13079CNVD-2017-30400CVE-2018-1091GHSA-87xr-wmm8-4mx3CVE-2017-0786GHSA-r277-gjg9-h48hCVE-2017-13087CVE-2017-13081CVE-2018-10883CVE-2018-10902GHSA-68p5-hvhw-rpc8CVE-2018-1000199EUVD-2018-5043VVD-MAGEIA-2017-384VVD-MAGEIA-2018-62CNVD-2017-30401EUVD-2017-18352EUVD-2018-2941EUVD-2018-6572GHSA-84fm-f9m3-wc94VVD-MAGEIA-2017-386CVE-2018-10880GHSA-f9jm-8gc5-4v7gEUVD-2018-2992EUVD-2017-8108CVE-2017-13215BDU:2019-02783CVE-2017-17863VVD-MAGEIA-2018-323EUVD-2017-8163EUVD-2017-9009CVE-2017-13078CVE-2018-10853ALAS-2018-1023GHSA-9jqj-q3v6-cv9hVVD-MAGEIA-2018-341BDU:2019-01054CVE-2017-17857CVE-2018-14633CVE-2018-10876CNVD-2017-30398CVE-2018-18445ALAS2-2019-1280GHSA-mxm3-6wfv-q9qgVVD-MAGEIA-2017-463EUVD-2017-4600EUVD-2018-8460CVE-2018-6412EUVD-2018-13396GHSA-5p56-pcgw-42mfCNVD-2017-30403EUVD-2018-5348GHSA-h6c2-frm7-53hmGHSA-mmph-rg95-j757SUSE-SU-2018:2776-1VVD-MAGEIA-2017-388EUVD-2017-3737EUVD-2018-5042EUVD-2018-2746GHSA-p6x5-xg7h-fj5hBDU:2019-02397EUVD-2017-4596EUVD-2017-4599EUVD-2018-6536GHSA-229x-53vm-m4f4CVE-2018-7995EUVD-2017-9001CVE-2018-5390CVE-2018-14617ALAS2-2018-1050EUVD-2018-2958SUSE-SU-2018:2775-1EUVD-2017-9010GHSA-v67j-hmh5-9qhgEUVD-2018-2944BDU:2019-00978

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›