CVE-2017-11600

CVSS v3.1 7 (High)

CVSS v2.0 6.9 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 25

net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local users to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via an XFRM_MSG_MIGRATE xfrm Netlink message.

Weaknesses

CWE-125: Out-of-bounds Read

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2017-07-24 07:29:00
(7 years ago)
Updated Date: 2023-06-26 16:55:48
(14 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel from 2.6.21 version and prior 3.2.93 version	cpe:2.3:o:linux:linux_kernel	>= 2.6.21	< 3.2.93
Linux Kernel from 3.3 version and prior 3.10.108 version	cpe:2.3:o:linux:linux_kernel	>= 3.3	< 3.10.108
Linux Kernel from 3.11 version and prior 3.18.70 version	cpe:2.3:o:linux:linux_kernel	>= 3.11	< 3.18.70
Linux Kernel from 3.19 version and prior 4.1.45 version	cpe:2.3:o:linux:linux_kernel	>= 3.19	< 4.1.45
Linux Kernel from 4.2 version and prior 4.4.87 version	cpe:2.3:o:linux:linux_kernel	>= 4.2	< 4.4.87
Linux Kernel from 4.5 version and prior 4.9.48 version	cpe:2.3:o:linux:linux_kernel	>= 4.5	< 4.9.48
Linux Kernel from 4.10 version and prior 4.12.11 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.12.11