CVE-2017-7294

Metadata

high
7.2
linux, linux-ti-omap4, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress, linux-qcm-msm, linux-armadaxp, linux-lts-quantal, linux-lts-raring, linux-lts-saucy, linux-lts-trusty, linux-goldfish, linux-grouper, linux-maguro, linux-mako, linux-manta, linux-flo, linux-raspi2, linux-lts-utopic, linux-lts-vivid, linux-lts-wily, linux-lts-xenial, linux-snapdragon, linux-aws, linux-hwe, linux-hwe-edge, linux-gke, linux-azure, linux-gcp, linux-kvm, linux-euclid, linux-oem, linux-krillin, linux-vegetahd
CVE-2017-7294
cve.mitre.org, bugzilla.redhat.com, lists.freedesktop.org, openwall.com, ubuntu.com, ubuntu.com, ubuntu.com, ubuntu.com, ubuntu.com, ubuntu.com, ubuntu.com, ubuntu.com
2017-03-28
2017-11-17 20:23
CVE-2017-7294 linux
2017-11-06 22:03
2017-10-30 20:09
2017-10-30 17:56
2017-10-23 14:15
2017-10-19 20:21
2017-10-17 20:37
2017-09-29 14:03
2017-09-21 21:31
2017-09-14 00:38
2017-09-08 17:48
2017-09-05 22:29
2017-09-05 21:20
2017-09-01 18:21
2017-08-31 19:21
2017-08-29 19:41
2017-08-24 23:35
2017-08-22 20:35
2017-08-17 23:42
2017-08-16 18:29
2017-08-03 17:29
2017-07-28 18:17
2017-07-19 19:28
2017-07-14 22:17
2017-07-10 16:20
2017-07-06 07:28
2017-06-30 21:28
2017-06-29 22:03
2017-06-29 21:03
2017-06-29 12:04
2017-06-29 10:03
2017-06-27 08:03
2017-06-23 19:28
2017-06-22 09:03
2017-06-22 01:20
2017-06-20 13:03
2017-06-20 06:03
2017-06-16 19:22
2017-06-15 02:30
2017-06-14 09:18
2017-06-12 21:24
2017-06-12 18:18
2017-06-09 21:18
2017-05-30 21:06
2017-05-30 16:04
2017-05-26 15:04
2017-05-25 18:09
2017-05-24 16:03
2017-05-18 21:10
2017-05-17 21:03
2017-05-17 04:04
2017-05-13 00:24
2017-05-12 18:03
2017-05-10 23:45
2017-05-06 02:15
2017-04-14 10:19
2017-04-07 19:55
2017-04-04 19:14
2017-04-01 21:42
2017-03-29 20:04
2017-03-29 19:04

Description

The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service (system hang or crash) or possibly gain privileges, via a crafted ioctl call for a /dev/dri/renderD* device.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
precise/esm linux-lts-trusty 3.13.0-123.172~precise1
product linux-krillin None
linux-vegetahd None
trusty linux 3.13.0-123.172
linux-lts-xenial 4.4.0-78.99~14.04.2
upstream linux 4.11~rc6
linux-armadaxp 4.11~rc6
linux-aws 4.11~rc6
linux-azure 4.11~rc6
linux-euclid 4.11~rc6
linux-flo 4.11~rc6
linux-gcp 4.11~rc6
linux-gke 4.11~rc6
linux-goldfish 4.11~rc6
linux-grouper 4.11~rc6
linux-hwe 4.11~rc6
linux-hwe-edge 4.11~rc6
linux-kvm 4.11~rc6
linux-linaro-omap 4.11~rc6
linux-linaro-shared 4.11~rc6
linux-linaro-vexpress 4.11~rc6
linux-lts-quantal 4.11~rc6
linux-lts-raring 4.11~rc6
linux-lts-saucy 4.11~rc6
linux-lts-trusty 4.11~rc6
linux-lts-utopic 4.11~rc6
linux-lts-vivid 4.11~rc6
linux-lts-wily 4.11~rc6
linux-lts-xenial 4.11~rc6
linux-maguro 4.11~rc6
linux-mako 4.11~rc6
linux-manta 4.11~rc6
linux-oem 4.11~rc6
linux-qcm-msm 4.11~rc6
linux-raspi2 4.11~rc6
linux-snapdragon 4.11~rc6
linux-ti-omap4 4.11~rc6
vivid/ubuntu-core linux 3.19.0-88.96
xenial linux 4.4.0-78.99
linux-aws 4.4.0-1017.26
linux-gke 4.4.0-1013.13
linux-hwe 4.8.0-58.63~16.04.1
linux-hwe-edge 4.10.0-21.23~16.04.1
linux-oem 4.13.0-1008.9  pending
linux-raspi2 4.4.0-1055.62
linux-snapdragon 4.4.0-1058.62
yakkety linux 4.8.0-58.63
linux-raspi2 4.8.0-1042.46
linux-snapdragon 4.4.0-1058.62
zesty linux 4.10.0-21.23
linux-raspi2 4.10.0-1005.7
linux-snapdragon 4.4.0-1058.62

Unaffected

Release Package Reason
precise linux ignored
linux-ti-omap4 ignored
linux-linaro-omap ignored
linux-linaro-shared ignored
linux-linaro-vexpress ignored
linux-qcm-msm ignored
linux-armadaxp ignored
linux-lts-quantal ignored
linux-lts-raring ignored
linux-lts-saucy ignored
linux-lts-trusty ignored
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
precise/esm linux ignored
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
vivid/stable-phone-overlay linux DNE
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
artful linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
devel linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
trusty linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper ignored
linux-maguro ignored
linux-mako ignored
linux-manta ignored
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic ignored
linux-lts-vivid ignored
linux-lts-wily ignored
linux-snapdragon DNE
linux-aws not-affected
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
vivid/ubuntu-core linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
xenial linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-azure not-affected
linux-gcp not-affected
linux-kvm not-affected
linux-euclid ignored
yakkety linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
zesty linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE