ID CVE-2017-13167
Summary An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993.
References
Vulnerable Configurations
  • cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
redhat via4
advisories
bugzilla
id 1383395
title CVE-2015-8956 kernel: NULL dereference in RFCOMM bind callback
oval
AND
  • OR
    • comment Red Hat Enterprise Linux 7 Client is installed
      oval oval:com.redhat.rhba:tst:20150364001
    • comment Red Hat Enterprise Linux 7 Server is installed
      oval oval:com.redhat.rhba:tst:20150364002
    • comment Red Hat Enterprise Linux 7 Workstation is installed
      oval oval:com.redhat.rhba:tst:20150364003
    • comment Red Hat Enterprise Linux 7 ComputeNode is installed
      oval oval:com.redhat.rhba:tst:20150364004
  • OR
    • AND
      • comment kernel-rt is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584015
      • comment kernel-rt is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727006
    • AND
      • comment kernel-rt-debug is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584019
      • comment kernel-rt-debug is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727014
    • AND
      • comment kernel-rt-debug-devel is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584009
      • comment kernel-rt-debug-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727016
    • AND
      • comment kernel-rt-debug-kvm is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584017
      • comment kernel-rt-debug-kvm is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20161051024
    • AND
      • comment kernel-rt-devel is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584023
      • comment kernel-rt-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727012
    • AND
      • comment kernel-rt-doc is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584005
      • comment kernel-rt-doc is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727018
    • AND
      • comment kernel-rt-kvm is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584007
      • comment kernel-rt-kvm is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20161051016
    • AND
      • comment kernel-rt-trace is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584021
      • comment kernel-rt-trace is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727008
    • AND
      • comment kernel-rt-trace-devel is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584011
      • comment kernel-rt-trace-devel is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150727010
    • AND
      • comment kernel-rt-trace-kvm is earlier than 0:3.10.0-514.rt56.420.el7
        oval oval:com.redhat.rhsa:tst:20162584013
      • comment kernel-rt-trace-kvm is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20161051018
rhsa
id RHSA-2016:2584
released 2016-11-03
severity Important
title RHSA-2016:2584: kernel-rt security, bug fix, and enhancement update (Important)
rpms
  • kernel-0:3.10.0-514.el7
  • kernel-abi-whitelists-0:3.10.0-514.el7
  • kernel-bootwrapper-0:3.10.0-514.el7
  • kernel-debug-0:3.10.0-514.el7
  • kernel-debug-devel-0:3.10.0-514.el7
  • kernel-devel-0:3.10.0-514.el7
  • kernel-doc-0:3.10.0-514.el7
  • kernel-headers-0:3.10.0-514.el7
  • kernel-kdump-0:3.10.0-514.el7
  • kernel-kdump-devel-0:3.10.0-514.el7
  • kernel-tools-0:3.10.0-514.el7
  • kernel-tools-libs-0:3.10.0-514.el7
  • kernel-tools-libs-devel-0:3.10.0-514.el7
  • perf-0:3.10.0-514.el7
  • python-perf-0:3.10.0-514.el7
  • kernel-rt-0:3.10.0-514.rt56.420.el7
  • kernel-rt-debug-0:3.10.0-514.rt56.420.el7
  • kernel-rt-debug-devel-0:3.10.0-514.rt56.420.el7
  • kernel-rt-debug-kvm-0:3.10.0-514.rt56.420.el7
  • kernel-rt-devel-0:3.10.0-514.rt56.420.el7
  • kernel-rt-doc-0:3.10.0-514.rt56.420.el7
  • kernel-rt-kvm-0:3.10.0-514.rt56.420.el7
  • kernel-rt-trace-0:3.10.0-514.rt56.420.el7
  • kernel-rt-trace-devel-0:3.10.0-514.rt56.420.el7
  • kernel-rt-trace-kvm-0:3.10.0-514.rt56.420.el7
refmap via4
confirm https://source.android.com/security/bulletin/pixel/2017-12-01
suse SUSE-SU-2018:0011
Last major update 03-10-2019 - 00:03
Published 06-12-2017 - 14:29
Back to Top