Wind River Support Network

HomeDefectsLIN9-6561
Fixed

LIN9-6561 : Security Advisory - linux - CVE-2017-18222

Created: Mar 15, 2018    Updated: Dec 3, 2018
Resolved Date: Jun 13, 2018
Found In Version: 9.0.0.14
Fix Version: 9.0.0.17
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Kernel

Description

In the Linux kernel before 4.12, Hisilicon Network Subsystem (HNS) does not consider the ETH_SS_PRIV_FLAGS case when retrieving sset_count data, which allows local users to cause a denial of service (buffer overflow and memory corruption) or possibly have unspecified other impact, as demonstrated by incompatibility between hns_get_sset_count and ethtool_get_strings.

https://nvd.nist.gov/vuln/detail/CVE-2017-18222

Other Downloads

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube