SB2017041324 - Fedora 24 update for kernel
Published: April 13, 2017 Updated: April 24, 2025
Security Bulletin ID
SB2017041324
Severity
Low
Patch available
YES
Number of vulnerabilities
3
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Heap-out-of-bounds write (CVE-ID: CVE-2017-7308)
The vulnerability allows a local attacker to cause DoS conditions.The weakness exists due to improper validation of certain block-size data by the packet_set_ring function in net/packet/af_packet.c. A local attacker can provide specific parameters to the PACKET_RX_RING option on an AF_PACKET socket with a TPACKET_V3 ring buffer version enabled, trigger heap-out-of-bounds write and cause denial of service.
Successful exploitation of the vulnerability results in denial of service.
2) Denial of service (CVE-ID: CVE-2017-7618)
The vulnerability allows a local attacker to cause DoS condition on the target system.The weakness exists due to an API operation calling its own callback flaw in crypto/ahash.c. A local attacker can trigger EBUSY on a full queue and cause an infinite recursion on the system.
Successful exploitation of the vulnerability results in denial of service.
3) Information disclosure (CVE-ID: CVE-2017-7616)
The vulnerability allows a local attacker to obtain potentially sensitive information from system memoryThe weakness exists due to an error handling flaw in the set_mempolicy() and mbind compat() system calls in 'mm/mempolicy.c'. A local attacker can trigger a failure of a certain bitmap operation and obtain sensitive information from uninitialized stack data.
Successful exploitation of the vulnerability results in information disclosure.
Remediation
Install update from vendor's website.