UBUNTU-CVE-2017-15274

Details

security/keys/keyctl.c in the Linux kernel before 4.11.5 does not consider the case of a NULL payload in conjunction with a nonzero length value, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted add_key or keyctl system call, a different vulnerability than CVE-2017-12192.

Affected Packages(22 packages)

linux

Ubuntu 14.04 LTS

Fixed in:

3.13.0-142.191

linux-lts-xenial

Ubuntu 14.04 LTS

Fixed in:

4.4.0-87.110~14.04.1

linux

Ubuntu 16.04 LTS

Fixed in:

4.4.0-87.110

linux-aws

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1026.35

linux-gcp

Ubuntu 16.04 LTS

Fixed in:

4.13.0-1002.5

linux-gke

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1022.22

linux-hwe

Ubuntu 16.04 LTS

Fixed in:

4.13.0-32.35~16.04.1

linux-raspi2

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1065.73

linux-snapdragon

Ubuntu 16.04 LTS

Fixed in:

4.4.0-1067.72

linux-azure-fde

Ubuntu 20.04 LTS

Affected versions:

5.4.0-1063.66+cvm2.25.4.0-1063.66+cvm3.25.4.0-1064.67+cvm1.15.4.0-1065.68+cvm2.15.4.0-1067.70+cvm1.15.4.0-1068.71+cvm1.15.4.0-1069.72+cvm1.15.4.0-1070.73+cvm1.15.4.0-1072.75+cvm1.15.4.0-1073.76+cvm1.1+16 more

References

REPORT

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5649645d725c73df4302428ee4e02c869248b4c5

REPORT

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.5

REPORT

https://bugzilla.suse.com/show_bug.cgi?id=1045327

REPORT

https://github.com/torvalds/linux/commit/5649645d725c73df4302428ee4e02c869248b4c5

REPORT

https://patchwork.kernel.org/patch/9781573/

REPORT

https://ubuntu.com/security/CVE-2017-15274

ADVISORY

https://ubuntu.com/security/notices/USN-3583-1

ADVISORY

https://ubuntu.com/security/notices/USN-3583-2

REPORT

https://www.cve.org/CVERecord?id=CVE-2017-15274