CVE-2017-7308

Metadata

high
7.2
linux, linux-ti-omap4, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress, linux-qcm-msm, linux-armadaxp, linux-lts-quantal, linux-lts-raring, linux-lts-saucy, linux-lts-trusty, linux-goldfish, linux-grouper, linux-maguro, linux-mako, linux-manta, linux-flo, linux-raspi2, linux-lts-utopic, linux-lts-vivid, linux-lts-wily, linux-lts-xenial, linux-snapdragon, linux-aws, linux-hwe, linux-hwe-edge, linux-gke, linux-azure, linux-gcp, linux-kvm, linux-euclid, linux-oem, linux-krillin, linux-vegetahd
CVE-2017-7308
cve.mitre.org, patchwork.ozlabs.org, ubuntu.com, ubuntu.com
2017-03-29
2017-11-17 20:23
ALAS-2017-828
CVE-2017-7308 linux
2017-11-06 22:04
2017-10-30 19:22
2017-10-30 17:57
2017-10-23 14:16
2017-10-17 20:37
2017-10-13 21:13
2017-09-21 21:31
2017-09-14 00:39
2017-09-08 17:48
2017-09-05 22:29
2017-09-05 21:21
2017-09-01 18:21
2017-08-31 19:21
2017-08-29 19:42
2017-08-24 23:35
2017-08-22 20:35
2017-08-17 23:42
2017-08-16 18:29
2017-08-03 17:30
2017-07-28 18:17
2017-07-20 19:12
2017-07-19 19:28
2017-07-14 22:17
2017-07-10 16:20
2017-07-06 07:29
2017-06-30 21:28
2017-06-23 19:28
2017-06-22 01:21
2017-06-16 19:22
2017-06-15 02:31
2017-06-14 09:19
2017-06-12 21:25
2017-06-12 18:19
2017-06-08 18:05
2017-05-26 15:04
2017-05-18 21:11
2017-05-18 04:03
2017-05-17 15:03
2017-05-13 00:25
2017-05-12 18:03
2017-05-10 23:46
2017-05-06 02:15
2017-04-26 18:27
2017-04-24 19:11
2017-04-20 10:11
2017-04-14 10:20
2017-04-13 10:03
2017-04-10 19:04
2017-04-08 04:11
2017-04-07 19:55
2017-04-07 01:03
2017-04-06 20:03
2017-04-05 16:04
2017-04-01 21:42
2017-03-31 22:03

Description

The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate certain block-size data, which allows local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privileges (if the CAP_NET_RAW capability is held), via crafted system calls.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
precise linux 3.2.0-126.169
linux-armadaxp 3.2.0-1687.114
linux-lts-trusty 3.13.0-116.163~precise1
linux-ti-omap4 3.2.0-1504.131
precise/esm linux 3.2.0-126.169
linux-lts-trusty 3.13.0-116.163~precise1
product linux-krillin None
linux-vegetahd None
trusty linux 3.13.0-116.163
linux-lts-xenial 4.4.0-72.93~14.04.1
upstream linux 4.11~rc6
linux-armadaxp 4.11~rc6
linux-aws 4.11~rc6
linux-azure 4.11~rc6
linux-euclid 4.11~rc6
linux-flo 4.11~rc6
linux-gcp 4.11~rc6
linux-gke 4.11~rc6
linux-goldfish 4.11~rc6
linux-grouper 4.11~rc6
linux-hwe 4.11~rc6
linux-hwe-edge 4.11~rc6
linux-kvm 4.11~rc6
linux-linaro-omap 4.11~rc6
linux-linaro-shared 4.11~rc6
linux-linaro-vexpress 4.11~rc6
linux-lts-quantal 4.11~rc6
linux-lts-raring 4.11~rc6
linux-lts-saucy 4.11~rc6
linux-lts-trusty 4.11~rc6
linux-lts-utopic 4.11~rc6
linux-lts-vivid 4.11~rc6
linux-lts-wily 4.11~rc6
linux-lts-xenial 4.11~rc6
linux-maguro 4.11~rc6
linux-mako 4.11~rc6
linux-manta 4.11~rc6
linux-oem 4.11~rc6
linux-qcm-msm 4.11~rc6
linux-raspi2 4.11~rc6
linux-snapdragon 4.11~rc6
linux-ti-omap4 4.11~rc6
vivid/ubuntu-core linux 3.19.0-85.93
xenial linux 4.4.0-72.93
linux-aws 4.4.0-1013.22
linux-euclid 4.4.0-9019.20  pending
linux-gke 4.4.0-1010.10
linux-hwe 4.8.0-46.49~16.04.1
linux-hwe-edge 4.10.0-19.21~16.04.1
linux-oem 4.13.0-1008.9  pending
linux-raspi2 4.4.0-1052.59
linux-snapdragon 4.4.0-1055.59
yakkety linux 4.8.0-46.49
linux-raspi2 4.8.0-1033.36
linux-snapdragon 4.4.0-1055.59
zesty linux-snapdragon 4.4.0-1055.59

Unaffected

Release Package Reason
vivid/stable-phone-overlay linux DNE
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
zesty linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
artful linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
devel linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
precise/esm linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
trusty linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper ignored
linux-maguro ignored
linux-mako ignored
linux-manta ignored
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic ignored
linux-lts-vivid ignored
linux-lts-wily ignored
linux-snapdragon DNE
linux-aws not-affected
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
linux-oem DNE
vivid/ubuntu-core linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
linux-kvm DNE
linux-euclid DNE
xenial linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-azure not-affected
linux-gcp not-affected
linux-kvm not-affected
yakkety linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
linux-azure DNE
linux-gcp DNE
precise linux-linaro-omap ignored
linux-linaro-shared ignored
linux-linaro-vexpress ignored
linux-qcm-msm ignored
linux-lts-quantal ignored
linux-lts-raring ignored
linux-lts-saucy ignored
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE