- Home
- CVEs with nessus.description==This+update+for+the+Linux+Kernel+3.12.74-60_64_60+fixes+several+issues.+The+following+security+bugs+were+fixed+%3A%0A%0A++-+CVE-2017-15274%3A+security%2Fkeys%2Fkeyctl.c+in+the+Linux+++++kernel+did+not+consider+the+case+of+a+NULL+payload+in+++++conjunction+with+a+nonzero+length+value%2C+which+allowed+++++local+users+to+cause+a+denial+of+service+%28NULL+pointer+++++dereference+and+OOPS%29+via+a+crafted+add_key+or+keyctl+++++system+call+%28bsc%231045327%29.%0A%0A++-+CVE-2017-1000112%3A+Updated+patch+for+this+issue+to+be+in+++++sync+with+the+other+livepatches.+Description+of+the+++++issue%3A+Prevent+race+condition+in+net-packet+code+that+++++could+have+been+exploited+by+unprivileged+users+to+gain+++++root+access+%28bsc%231052368%2C+bsc%231052311%29.%0A%0A++-+CVE-2017-9242%3A+The+__ip6_append_data+function+in+++++net%2Fipv6%2Fip6_output.c+was+too+late+in+checking+whether+++++an+overwrite+of+an+skb+data+structure+may+occur%2C+which+++++allowed+local+users+to+cause+a+denial+of+service+%28system+++++crash%29+via+crafted+system+calls+%28bsc%231042892%29.%0A%0A++-+CVE-2017-8890%3A+The+inet_csk_clone_lock+function+in+++++net%2Fipv4%2Finet_connection_sock.c+allowed+attackers+to+++++cause+a+denial+of+service+%28double+free%29+or+possibly+have+++++unspecified+other+impact+by+leveraging+use+of+the+accept+++++system+call+%28bsc%231038564%29.%0A%0ANote+that+Tenable+Network+Security+has+extracted+the+preceding+description+block+directly+from+the+SUSE+security+advisory.+Tenable+has+attempted+to+automatically+clean+and+format+it+as+much+as+possible+without+introducing+additional+issues
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top