### [CVE-2017-7558](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7558)
![](https://img.shields.io/static/v1?label=Product&message=kernel&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%204.7-rc1%20through%204.13%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125&color=brighgreen)

### Description

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic information. As a result, up to 100 bytes of the slab data could be leaked to a userspace.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/bcoles/kasld
- https://github.com/r3dxpl0it/Extreme-Exploit