mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
154 lines
6.1 KiB
JSON
154 lines
6.1 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2017-15129",
|
|
"ASSIGNER": "secalert@redhat.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-362",
|
|
"cweId": "CWE-362"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "n/a",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Linux kernel v4.0-rc1 through v4.15-rc5",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "Linux kernel v4.0-rc1 through v4.15-rc5"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://access.redhat.com/errata/RHSA-2018:0676",
|
|
"refsource": "MISC",
|
|
"name": "https://access.redhat.com/errata/RHSA-2018:0676"
|
|
},
|
|
{
|
|
"url": "https://access.redhat.com/errata/RHSA-2018:1062",
|
|
"refsource": "MISC",
|
|
"name": "https://access.redhat.com/errata/RHSA-2018:1062"
|
|
},
|
|
{
|
|
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=21b5944350052d2583e82dd59b19a9ba94a007f0",
|
|
"refsource": "MISC",
|
|
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=21b5944350052d2583e82dd59b19a9ba94a007f0"
|
|
},
|
|
{
|
|
"url": "http://seclists.org/oss-sec/2018/q1/7",
|
|
"refsource": "MISC",
|
|
"name": "http://seclists.org/oss-sec/2018/q1/7"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/102485",
|
|
"refsource": "MISC",
|
|
"name": "http://www.securityfocus.com/bid/102485"
|
|
},
|
|
{
|
|
"url": "https://access.redhat.com/errata/RHSA-2018:0654",
|
|
"refsource": "MISC",
|
|
"name": "https://access.redhat.com/errata/RHSA-2018:0654"
|
|
},
|
|
{
|
|
"url": "https://access.redhat.com/errata/RHSA-2019:1946",
|
|
"refsource": "MISC",
|
|
"name": "https://access.redhat.com/errata/RHSA-2019:1946"
|
|
},
|
|
{
|
|
"url": "https://access.redhat.com/security/cve/CVE-2017-15129",
|
|
"refsource": "MISC",
|
|
"name": "https://access.redhat.com/security/cve/CVE-2017-15129"
|
|
},
|
|
{
|
|
"url": "https://github.com/torvalds/linux/commit/21b5944350052d2583e82dd59b19a9ba94a007f0",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/torvalds/linux/commit/21b5944350052d2583e82dd59b19a9ba94a007f0"
|
|
},
|
|
{
|
|
"url": "https://marc.info/?l=linux-netdev&m=151370451121029&w=2",
|
|
"refsource": "MISC",
|
|
"name": "https://marc.info/?l=linux-netdev&m=151370451121029&w=2"
|
|
},
|
|
{
|
|
"url": "https://marc.info/?t=151370468900001&r=1&w=2",
|
|
"refsource": "MISC",
|
|
"name": "https://marc.info/?t=151370468900001&r=1&w=2"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3617-1/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3617-1/"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3617-2/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3617-2/"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3617-3/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3617-3/"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3619-1/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3619-1/"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3619-2/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3619-2/"
|
|
},
|
|
{
|
|
"url": "https://usn.ubuntu.com/3632-1/",
|
|
"refsource": "MISC",
|
|
"name": "https://usn.ubuntu.com/3632-1/"
|
|
},
|
|
{
|
|
"url": "https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.11",
|
|
"refsource": "MISC",
|
|
"name": "https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.11"
|
|
},
|
|
{
|
|
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174",
|
|
"refsource": "MISC",
|
|
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1531174"
|
|
}
|
|
]
|
|
}
|
|
} |