CVE-2017-18017
CVSS v3.1
9.8 (Critical)
CVSS v2.0
10 (High)
EPSS
95.38 % (99th)
Affected Products
29
Advisories
20
NVD Status
Analyzed
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.
Weaknesses
- CWE-416
- Use After Free
- CVE Status
- PUBLISHED
- NVD Status
- Analyzed
- CNA
- MITRE
- Published Date
-
2018-01-03 06:29:00
(6 years ago) - Updated Date
-
2024-04-24 13:40:09
(4 months ago)
Affected Products
- Caas Platform
- Linux Enterprise Debuginfo
- Linux Enterprise Module For Public Cloud
- Linux Enterprise Point Of Sale
- Openstack Cloud
- Linux Enterprise Desktop
- Linux Enterprise High Availability
- Linux Enterprise High Availability Extension
- Linux Enterprise Live Patching
- Linux Enterprise Real Time Extension
- Linux Enterprise Server
- Linux Enterprise Software Development Kit
- Linux Enterprise Workstation Extension
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Configuration #6
|
Configuration #7
|
Configuration #8
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...