cve/2017/CVE-2017-7558.md

### [CVE-2017-7558](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7558)
![](https://img.shields.io/static/v1?label=Product&message=kernel&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%204.7-rc1%20through%204.13%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125&color=brighgreen)

### Description

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic information. As a result, up to 100 bytes of the slab data could be leaked to a userspace.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/bcoles/kasld
- https://github.com/r3dxpl0it/Extreme-Exploit
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2017-7558](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7558)`
			`![](https://img.shields.io/static/v1?label=Product&message=kernel&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%204.7-rc1%20through%204.13%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125&color=brighgreen)`

			`### Description`

			`A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic information. As a result, up to 100 bytes of the slab data could be leaked to a userspace.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/bcoles/kasld`
			`- https://github.com/r3dxpl0it/Extreme-Exploit`