Wind River Support Network

HomeDefectsLIN9-5191

Fixed

LIN9-5191 : Security Advisory - linux - CVE-2017-14106

Created: Sep 6, 2017 Updated: Dec 3, 2018

Resolved Date: Sep 13, 2017

Found In Version: unknown

Fix Version: 9.0.0.11

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Kernel

Description

The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14106

Steps to Reproduce

CVE-2017-14106 Detail:
https://nvd.nist.gov/vuln/detail/CVE-2017-14106

Other Downloads

Wind River Linux 9.0.0.11
Wind River Linux 9.0.0.12
Wind River Linux 9.0.0.13
Wind River Linux 9.0.0.14
Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2017-14106