ALAS-2017-811

Metadata

high
7.2
kernel
CVE-2017-7184, CVE-2017-6347
2017-03-30
2017-06-16 19:22
CVE-2017-6347 linux
CVE-2017-7184 linux
CVE-2017-6347
CVE-2017-7184
2017-04-01 21:44
2017-03-30 01:03

Description

The skbs processed by ip_cmsg_recv() are not guaranteed to be linear (e.g. when sending UDP packets over loopback with MSGMORE). Using csum_partial() on potentially the whole skb len is dangerous; instead be on the safe side and use skb_checksum(). This may lead to an infoleak as the kernel memory may be checksummed and sent as part of the packet. (CVE-2017-6347 )It was discovered that xfrm_replay_verify_len(), as called by xfrm_new_ae(), did not verify that the user-specified replay_window was within the replay state buffer. This allowed for out-of-bounds reads and writes of kernel memory.(CVE-2017-7184 )

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Package Patched in
kernel kernel-4.4.51-40.60.amzn1.i686
kernel kernel-4.4.51-40.60.amzn1.x86_64
kernel kernel-4.4.51-40.60.amzn1.src
kernel-debuginfo kernel-debuginfo-4.4.51-40.60.amzn1.x86_64
kernel-debuginfo kernel-debuginfo-4.4.51-40.60.amzn1.i686
kernel-debuginfo-common-i686 kernel-debuginfo-common-i686-4.4.51-40.60.amzn1.i686
kernel-debuginfo-common-x86_64 kernel-debuginfo-common-x86_64-4.4.51-40.60.amzn1.x86_64
kernel-devel kernel-devel-4.4.51-40.60.amzn1.i686
kernel-devel kernel-devel-4.4.51-40.60.amzn1.x86_64
kernel-doc kernel-doc-4.4.51-40.60.amzn1.noarch
kernel-headers kernel-headers-4.4.51-40.60.amzn1.x86_64
kernel-headers kernel-headers-4.4.51-40.60.amzn1.i686
kernel-tools kernel-tools-4.4.51-40.60.amzn1.i686
kernel-tools kernel-tools-4.4.51-40.60.amzn1.x86_64
kernel-tools-debuginfo kernel-tools-debuginfo-4.4.51-40.60.amzn1.x86_64
kernel-tools-debuginfo kernel-tools-debuginfo-4.4.51-40.60.amzn1.i686
kernel-tools-devel kernel-tools-devel-4.4.51-40.60.amzn1.i686
kernel-tools-devel kernel-tools-devel-4.4.51-40.60.amzn1.x86_64
perf perf-4.4.51-40.60.amzn1.x86_64
perf perf-4.4.51-40.60.amzn1.i686
perf-debuginfo perf-debuginfo-4.4.51-40.60.amzn1.i686
perf-debuginfo perf-debuginfo-4.4.51-40.60.amzn1.x86_64