cnvd - cnvd-2017-15843

cnvd-2017-15843

Vulnerability from cnvd

Title

Linux Kernel权限提升漏洞（CNVD-2017-15843）

Description

Linux Kernel是一款开源的操作系统。 Linux Kernel存在安全绕过漏洞，允许本地攻击者利用漏洞提交特殊请求，提升权限。

Severity

高

Patch Name

Linux Kernel权限提升漏洞（CNVD-2017-15843）的补丁

Patch Description

Linux Kernel是一款开源的操作系统。 Linux Kernel存在安全绕过漏洞，允许攻击者利用漏洞提交特殊请求，提升权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可联系供应商获得补丁信息： https://www.kernel.org/

Reference

http://www.securityfocus.com/bid/99263/

Impacted products

Name
Linux kernel <=4.11.5

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "99263"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-7518"
    }
  },
  "description": "Linux Kernel\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nLinux Kernel\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u5141\u8bb8\u672c\u5730\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\uff0c\u63d0\u5347\u6743\u9650\u3002",
  "discovererName": "Prasad J Pandit / Red Hat Product Security Team",
  "formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://www.kernel.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-15843",
  "openTime": "2017-07-21",
  "patchDescription": "Linux Kernel\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nLinux Kernel\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\uff0c\u63d0\u5347\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Linux Kernel\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2017-15843\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Linux kernel \u003c=4.11.5"
  },
  "referenceLink": "http://www.securityfocus.com/bid/99263/",
  "serverity": "\u9ad8",
  "submitTime": "2017-06-26",
  "title": "Linux Kernel\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2017-15843\uff09"
}

CVE-2017-7518 (GCVE-0-2017-7518)

Vulnerability from cvelistv5

Published

2018-07-30 13:00

Modified

2024-08-05 16:04

Severity ?

5.5 (Medium) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-250

Summary

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest. Linux guests are not affected by this.

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2018:0412	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/articles/3290921	x_refsource_CONFIRM
	https://usn.ubuntu.com/3619-2/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:0395	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3754-1/	vendor-advisory, x_refsource_UBUNTU
	http://www.securitytracker.com/id/1038782	vdb-entry, x_refsource_SECTRACK
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7518	x_refsource_CONFIRM
	http://www.openwall.com/lists/oss-security/2017/06/23/5	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/3619-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.debian.org/security/2017/dsa-3981	vendor-advisory, x_refsource_DEBIAN
	https://www.spinics.net/lists/kvm/msg151817.html	mailing-list, x_refsource_MLIST
	http://www.securityfocus.com/bid/99263	vdb-entry, x_refsource_BID