Bug 1035107 - (CVE-2017-7979) VUL-0: CVE-2017-7979: kernel-source: The cookie feature in the packet action API implementation innet/sched/act_api.c in the Linux kerne...
(CVE-2017-7979)
VUL-0: CVE-2017-7979: kernel-source: The cookie feature in the packet action ...
Status: RESOLVED UPSTREAM
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P5 - None : Normal
: ---
Assigned To: E-mail List
Security Team bot
https://smash.suse.de/issue/183859/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2017-04-20 09:07 UTC by Marcus Meissner
Modified: 2017-04-20 09:09 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2017-04-20 09:07:10 UTC
CVE-2017-7979

The cookie feature in the packet action API implementation in
net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the
tb nlattr array, which allows local users to cause a denial of service
(uninitialized memory access and refcount underflow, and system hang or crash)
or possibly have unspecified other impact via "tc filter add" commands in
certain contexts. NOTE: this does not affect stable kernels, such as 4.10.x,
from kernel.org.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-7979
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7979
http://www.cvedetails.com/cve/CVE-2017-7979/
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1682368
http://marc.info/?l=linux-netdev&m=149251041420195
http://marc.info/?l=linux-netdev&m=149251041420194
http://marc.info/?l=linux-netdev&m=149200746116366
http://marc.info/?l=linux-netdev&m=149200746116365
http://marc.info/?l=linux-netdev&m=149200742616349
https://bugzilla.proxmox.com/show_bug.cgi?id=1351
Comment 1 Marcus Meissner 2017-04-20 09:09:06 UTC
only affects 4.11.x kernels. older kernels not affected.