CVE-2017-7477

Metadata

medium
6.9
linux, linux-ti-omap4, linux-linaro-omap, linux-linaro-shared, linux-linaro-vexpress, linux-qcm-msm, linux-armadaxp, linux-lts-quantal, linux-lts-raring, linux-lts-saucy, linux-lts-trusty, linux-goldfish, linux-grouper, linux-maguro, linux-mako, linux-manta, linux-flo, linux-raspi2, linux-lts-utopic, linux-lts-vivid, linux-lts-wily, linux-lts-xenial, linux-snapdragon, linux-aws, linux-hwe, linux-hwe-edge, linux-gke, linux-krillin, linux-vegetahd
CVE-2017-7477
cve.mitre.org, openwall.com, openwall.com, openwall.com, ubuntu.com, ubuntu.com, ubuntu.com, bugs.launchpad.net
2017-04-25
2017-10-18 21:23
CVE-2017-7477 linux
2017-06-16 19:22
2017-06-15 02:34
2017-05-26 15:07
2017-05-25 18:12
2017-05-18 21:14
2017-05-17 04:05
2017-05-13 00:28
2017-05-10 23:51
2017-05-07 16:15
2017-05-06 02:19
2017-05-02 18:06
2017-04-27 07:05
2017-04-27 01:04
2017-04-27 00:03

Description

Heap-based buffer overflow in drivers/net/macsec.c in the MACsec module in the Linux kernel through 4.10.12 allows attackers to cause a denial of service or possibly have unspecified other impact by leveraging the use of a MAX_SKB_FRAGS+1 size in conjunction with the NETIF_F_FRAGLIST feature, leading to an error in the skb_to_sgvec function.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
upstream linux 4.11
linux-armadaxp 4.11
linux-aws 4.11
linux-flo 4.11
linux-gke 4.11
linux-goldfish 4.11
linux-grouper 4.11
linux-hwe 4.11
linux-hwe-edge 4.11
linux-linaro-omap 4.11
linux-linaro-shared 4.11
linux-linaro-vexpress 4.11
linux-lts-quantal 4.11
linux-lts-raring 4.11
linux-lts-saucy 4.11
linux-lts-trusty 4.11
linux-lts-utopic 4.11
linux-lts-vivid 4.11
linux-lts-wily 4.11
linux-lts-xenial 4.11
linux-maguro 4.11
linux-mako 4.11
linux-manta 4.11
linux-qcm-msm 4.11
linux-raspi2 4.11
linux-snapdragon 4.11
linux-ti-omap4 4.11
xenial linux-hwe 4.8.0-52.55~16.04.1
linux-hwe-edge 4.10.0-21.23~16.04.1
yakkety linux 4.8.0-52.55
linux-raspi2 4.8.0-1036.39
zesty linux 4.10.0-21.23
linux-raspi2 4.10.0-1005.7

Unaffected

Release Package Reason
precise linux not-affected
linux-ti-omap4 not-affected
linux-linaro-omap ignored
linux-linaro-shared ignored
linux-linaro-vexpress ignored
linux-qcm-msm ignored
linux-armadaxp not-affected
linux-lts-quantal ignored
linux-lts-raring ignored
linux-lts-saucy ignored
linux-lts-trusty not-affected
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
precise/esm linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty not-affected
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
trusty linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper ignored
linux-maguro ignored
linux-mako ignored
linux-manta ignored
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic ignored
linux-lts-vivid not-affected
linux-lts-wily ignored
linux-lts-xenial not-affected
linux-snapdragon DNE
linux-aws not-affected
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
vivid/ubuntu-core linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
vivid/stable-phone-overlay linux DNE
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-raspi2 DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon DNE
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
xenial linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish not-affected
linux-grouper DNE
linux-maguro DNE
linux-mako not-affected
linux-manta DNE
linux-flo not-affected
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws not-affected
linux-gke not-affected
devel linux not-affected
linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish DNE
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-raspi2 not-affected
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
yakkety linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako ignored
linux-manta DNE
linux-flo ignored
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
zesty linux-ti-omap4 DNE
linux-linaro-omap DNE
linux-linaro-shared DNE
linux-linaro-vexpress DNE
linux-qcm-msm DNE
linux-armadaxp DNE
linux-lts-quantal DNE
linux-lts-raring DNE
linux-lts-saucy DNE
linux-lts-trusty DNE
linux-goldfish ignored
linux-grouper DNE
linux-maguro DNE
linux-mako DNE
linux-manta DNE
linux-flo DNE
linux-lts-utopic DNE
linux-lts-vivid DNE
linux-lts-wily DNE
linux-lts-xenial DNE
linux-snapdragon not-affected
linux-aws DNE
linux-hwe DNE
linux-hwe-edge DNE
linux-gke DNE
product linux-krillin not-affected
linux-vegetahd not-affected