SB2017081830 - Fedora 25 update for kernel

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017081830

SB2017081830 - Fedora 25 update for kernel

Published: August 18, 2017 Updated: April 24, 2025

Security Bulletin ID SB2017081830
Severity
Medium
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Adjecent network
Highest impact Code execution

Breakdown by Severity

Medium 25% Low 75%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 secuirty vulnerabilities.


1) Privilege escalation (CVE-ID: CVE-2017-12134)

The vulnerability allows a local attacker on a Linux-based guest system to gain elevated privileges on the host system.

The weakness exists due to aa flaw in merging adjacent block IO requests. A local attacker on the guest system can incorrectly access memory during block stream processing to obtain potentially sensitive information or gain elevated privileges on the host system.

2) Privilege escalation (CVE-ID: CVE-2017-1000111)

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The weakness exists in the packet_set_ring function due to improper implementation of raw packet sockets in the networking subsystem of the affected software that handles synchronization. A local attacker with CAP_NET_RAW permissions can open a raw packet socket, trigger a race condition, eventually cause use-after-free error and execute arbitrary code with root privileges.

Successful exploitation of the vulnerability may result in system compromise.

3) Privilege escalation (CVE-ID: CVE-2017-1000112)

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The weakness exists due to race condition in the UDP Fragmentation Offload (UFO) code. A local attacker can send specially crafted UFO packets, trigger memory corruption and execute arbitrary code with elevated privileges.

Successful exploitation of the vulnerability may result in system compromise.

4) Race condition (CVE-ID: CVE-2017-7533)

The vulnerability allows a local user to execute arbitrary code with escalated privileges.

The vulnerability exists due to a race condition in the fsnotify implementation in the Linux kernel through 4.12.4. A local user can create an application, which leverages simultaneous execution of the inotify_handle_event and vfs_rename functions and trigger memory corruption and denials of service attack or execute arbitrary code on the target system with root privileges.

Successful exploitation of this vulnerability may allow a local user to obtain elevated privileges on the system.

Note: this vulnerability is being active exploited in the wild for 32-bit systems in August 2017.

Remediation

Install update from vendor's website.

References