- Home
- CVEs with nessus.description==Race condition in raw_sendmsg function allows denial-of-service or
kernel addresses leak
A flaw was found in the Linux kernel's implementation of raw_sendmsg
allowing a local attacker to panic the kernel or possibly leak kernel
addresses. A local attacker, with the privilege of creating raw
sockets, can abuse a possible race condition when setting the socket
option to allow the kernel to automatically create ip header values
and thus potentially escalate their privileges. (CVE-2017-17712)
Use-after-free vulnerability in DCCP socket
A use-after-free vulnerability was found in DCCP socket code affecting
the Linux kernel since 2.6.16. This vulnerability could allow an
attacker to their escalate privileges. (CVE-2017-8824)
Stack-based out-of-bounds read via vmcall instruction
Linux kernel compiled with the KVM virtualization (CONFIG_KVM) support
is vulnerable to an out-of-bounds read access issue. It could occur
when emulating vmcall instructions invoked by a guest. A guest
user/process could use this flaw to disclose kernel memory bytes.
(CVE-2017-17741)
Unchecked capabilities in net/netfilter/xt_osf.c allows for
unprivileged modification to systemwide fingerprint list
net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not
require the CAP_NET_ADMIN capability for add_callback and
remove_callback operations, which allows local users to bypass
intended access restrictions because the xt_osf_fingers data structure
is shared across all net namespaces. (CVE-2017-17450)
Missing capabilities check in net/netfilter/nfnetlink_cthelper.c
allows for unprivileged access to systemwide nfnl_cthelper_list
structure
net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4
does not require the CAP_NET_ADMIN capability for new, get, and del
operations, which allows local users to bypass intended access
restrictions because the nfnl_cthelper_list data structure is shared
across all net namespaces. (CVE-2017-17448)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top