csaf_certbund - wid-sec-w-2024-2078

wid-sec-w-2024-2078

Vulnerability from csaf_certbund

Published

2017-09-26 22:00

Modified

2025-01-19 23:00

Summary

Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Der Kernel stellt den Kern des Linux Betriebssystems dar.

Angriff

Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um seine Privilegien zu erhöhen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle im Linux Kernel ausnutzen, um seine Privilegien zu erh\u00f6hen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-2078 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2024-2078.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-2078 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2078"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2799 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2799"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2794 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2794"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2793 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2793"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2796 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2796"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2798 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2798"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2797 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2797"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2795 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2795"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2800 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2800"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2801 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2801"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2017:2802 vom 2017-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2017:2802"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-2795 vom 2017-09-28",
        "url": "http://linux.oracle.com/errata/ELSA-2017-2795.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-2801 vom 2017-10-07",
        "url": "http://linux.oracle.com/errata/ELSA-2017-2801.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2723-1 vom 2017-10-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172723-1/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:2725-1 vom 2017-10-15",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172725-1/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3200 vom 2017-11-16",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3200.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2017:3165-1 vom 2017-12-01",
        "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173165-1.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2017-3658 vom 2017-12-08",
        "url": "http://linux.oracle.com/errata/ELSA-2017-3658.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-4036 vom 2018-02-21",
        "url": "http://linux.oracle.com/errata/ELSA-2018-4036.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-1854 vom 2018-06-26",
        "url": "http://linux.oracle.com/errata/ELSA-2018-1854.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2019-4702 vom 2019-08-04",
        "url": "http://linux.oracle.com/errata/ELSA-2019-4702.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2019-4732 vom 2019-08-04",
        "url": "http://linux.oracle.com/errata/ELSA-2019-4732.html"
      },
      {
        "category": "external",
        "summary": "CISA Known Exploited Vulnerabilities Catalog vom 2024-09-09",
        "url": "https://www.cisa.gov/news-events/alerts/2024/09/09/cisa-adds-three-known-exploited-vulnerabilities-catalog"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2025:0152-1 vom 2025-01-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020152.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Linux Kernel: Schwachstelle erm\u00f6glicht Privilegieneskalation",
    "tracking": {
      "current_release_date": "2025-01-19T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-20T09:28:12.301+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2024-2078",
      "initial_release_date": "2017-09-26T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2017-09-26T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initial Release"
        },
        {
          "date": "2017-09-26T22:00:00.000+00:00",
          "number": "2",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2017-09-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-08T22:00:00.000+00:00",
          "number": "4",
          "summary": "New remediations available"
        },
        {
          "date": "2017-10-08T22:00:00.000+00:00",
          "number": "5",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2017-11-15T23:00:00.000+00:00",
          "number": "6",
          "summary": "New remediations available"
        },
        {
          "date": "2017-11-30T23:00:00.000+00:00",
          "number": "7",
          "summary": "New remediations available"
        },
        {
          "date": "2017-12-10T23:00:00.000+00:00",
          "number": "8",
          "summary": "New remediations available"
        },
        {
          "date": "2018-02-21T23:00:00.000+00:00",
          "number": "9",
          "summary": "New remediations available"
        },
        {
          "date": "2018-06-26T22:00:00.000+00:00",
          "number": "10",
          "summary": "New remediations available"
        },
        {
          "date": "2019-08-04T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-09-09T22:00:00.000+00:00",
          "number": "12",
          "summary": "Aktive Ausnutzung gemeldet"
        },
        {
          "date": "2025-01-19T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "13"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Open Source Linux Kernel",
            "product": {
              "name": "Open Source Linux Kernel",
              "product_id": "6368",
              "product_identification_helper": {
                "cpe": "cpe:/o:linux:linux_kernel:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5",
                "product": {
                  "name": "Red Hat Enterprise Linux 5",
                  "product_id": "67748",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "5.9",
                "product": {
                  "name": "Red Hat Enterprise Linux 5.9",
                  "product_id": "T007369",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:v.5.9:server:long_life"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.4 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 6.4 x86_64",
                  "product_id": "T010850",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6.4_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.3 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server EUS 7.3 x86_64",
                  "product_id": "T010852",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7.3_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.2 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 7.2 x86_64",
                  "product_id": "T010853",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7.2_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.2 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server EUS 7.2 x86_64",
                  "product_id": "T010854",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7.2_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.3 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 7.3 x86_64",
                  "product_id": "T010855",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7.3_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.7",
                "product": {
                  "name": "Red Hat Enterprise Linux Server EUS 6.7",
                  "product_id": "T010856",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6.7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.5 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 6.5 x86_64",
                  "product_id": "T010857",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6.5_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.6 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 6.6 x86_64",
                  "product_id": "T010858",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6.6_x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6",
                "product": {
                  "name": "Red Hat Enterprise Linux Server 6",
                  "product_id": "T010859",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "6.2 x86_64",
                "product": {
                  "name": "Red Hat Enterprise Linux Server AUS 6.2 x86_64",
                  "product_id": "T010861",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6.2_x86_64"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "6",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop 6",
                  "product_id": "T010860",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux_desktop:6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux Desktop"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server SP4",
                  "product_id": "T005583",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:linux_enterprise_server:11-sp4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "SP3 LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server SP3 LTSS",
                  "product_id": "T007158",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:linux_enterprise_server:11:sp3:ltss"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Linux Enterprise Server"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000253",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle im Linux Kernel in der Art und Weise wie die Linux-Kernel ELF-Executables geladen werden. Ein lokaler Angreifer mit Zugriff auf SUID oder eine anderweitig privilegierte Position Independent Executable (PIE)-Bin\u00e4rdatei kann diese Schwachstelle ausnutzen, um seine Privilegien auf dem System zu erweitern."
        }
      ],
      "product_status": {
        "known_affected": [
          "T010855",
          "T007369",
          "T010854",
          "T010857",
          "T007158",
          "T010856",
          "T010850",
          "T010861",
          "6368",
          "T010853",
          "T010852",
          "67748",
          "T010860",
          "T004914",
          "T002207",
          "1727",
          "T010859",
          "T010858",
          "T005583"
        ]
      },
      "release_date": "2017-09-26T22:00:00.000+00:00",
      "title": "CVE-2017-1000253"
    }
  ]
}

cve-2017-1000253

Vulnerability from cvelistv5

Published

2017-10-04 01:00

Modified

2024-09-10 03:55

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. With CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, and a normal top-down address allocation strategy, load_elf_binary() will attempt to map a PIE binary into an address range immediately below mm->mmap_base. Unfortunately, load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary which means that, while the first PT_LOAD segment is mapped below mm->mmap_base, the subsequent PT_LOAD segment(s) end up being mapped above mm->mmap_base into the are that is supposed to be the "gap" between the stack and the binary.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2017:2798	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2795	vendor-advisory, x_refsource_REDHAT
	http://www.securitytracker.com/id/1039434	vdb-entry, x_refsource_SECTRACK
	https://access.redhat.com/errata/RHSA-2017:2801	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2796	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/101010	vdb-entry, x_refsource_BID
	https://access.redhat.com/errata/RHSA-2017:2799	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2794	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2793	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2797	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2017:2802	vendor-advisory, x_refsource_REDHAT
	https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt	x_refsource_MISC
	https://access.redhat.com/errata/RHSA-2017:2800	vendor-advisory, x_refsource_REDHAT

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:00:39.693Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2017:2798",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2798"
          },
          {
            "name": "RHSA-2017:2795",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2795"
          },
          {
            "name": "1039434",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039434"
          },
          {
            "name": "RHSA-2017:2801",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2801"
          },
          {
            "name": "RHSA-2017:2796",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2796"
          },
          {
            "name": "101010",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101010"
          },
          {
            "name": "RHSA-2017:2799",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2799"
          },
          {
            "name": "RHSA-2017:2794",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2794"
          },
          {
            "name": "RHSA-2017:2793",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2793"
          },
          {
            "name": "RHSA-2017:2797",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2797"
          },
          {
            "name": "RHSA-2017:2802",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2802"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt"
          },
          {
            "name": "RHSA-2017:2800",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2017:2800"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.0"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.1:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.1"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.2:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.2"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.3:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.3"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.4:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.4"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.5:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.5"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.6:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.6"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.7:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.7"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.8:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.8"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:6.9:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "6.9"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:7.1406:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "7.1406"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:7.1503:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "7.1503"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:7.1511:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "7.1511"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:centos:centos:7.1611:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "centos",
            "vendor": "centos",
            "versions": [
              {
                "status": "affected",
                "version": "7.1611"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.1:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.2:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.3:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.4:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.5:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.6:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.7:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.8:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:6.9:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:7.1:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:7.2:*:*:*:*:*:*:*",
              "cpe:2.3:o:redhat:enterprise_linux:7.3:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "enterprise_linux",
            "vendor": "redhat",
            "versions": [
              {
                "status": "affected",
                "version": "6.0"
              },
              {
                "status": "affected",
                "version": "6.1"
              },
              {
                "status": "affected",
                "version": "6.2"
              },
              {
                "status": "affected",
                "version": "6.3"
              },
              {
                "status": "affected",
                "version": "6.4"
              },
              {
                "status": "affected",
                "version": "6.5"
              },
              {
                "status": "affected",
                "version": "6.6"
              },
              {
                "status": "affected",
                "version": "6.7"
              },
              {
                "status": "affected",
                "version": "6.8"
              },
              {
                "status": "affected",
                "version": "6.9"
              },
              {
                "status": "affected",
                "version": "7.0"
              },
              {
                "status": "affected",
                "version": "7.1"
              },
              {
                "status": "affected",
                "version": "7.2"
              },
              {
                "status": "affected",
                "version": "7.3"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "3.2.70",
                "status": "affected",
                "version": "2.6.25",
                "versionType": "custom"
              },
              {
                "lessThan": "3.4.109",
                "status": "affected",
                "version": "3.3",
                "versionType": "custom"
              },
              {
                "lessThan": "3.10.77",
                "status": "affected",
                "version": "3.5",
                "versionType": "custom"
              },
              {
                "lessThan": "3.12.43",
                "status": "affected",
                "version": "3.11",
                "versionType": "custom"
              },
              {
                "lessThan": "3.14.41",
                "status": "affected",
                "version": "3.13",
                "versionType": "custom"
              },
              {
                "lessThan": "3.16.35",
                "status": "affected",
                "version": "3.15",
                "versionType": "custom"
              },
              {
                "lessThan": "3.18.14",
                "status": "affected",
                "version": "3.17",
                "versionType": "custom"
              },
              {
                "lessThan": "3.19.7",
                "status": "affected",
                "version": "3.19",
                "versionType": "custom"
              },
              {
                "lessThan": "4.0.2",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2017-1000253",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-06T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2024-09-09",
                "reference": "https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-119",
                "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-10T03:55:14.762Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2024-09-09T00:00:00+00:00",
            "value": "CVE-2017-1000253 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2017-09-25T00:00:00",
      "datePublic": "2017-10-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. With CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, and a normal top-down address allocation strategy, load_elf_binary() will attempt to map a PIE binary into an address range immediately below mm-\u003emmap_base. Unfortunately, load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary which means that, while the first PT_LOAD segment is mapped below mm-\u003emmap_base, the subsequent PT_LOAD segment(s) end up being mapped above mm-\u003emmap_base into the are that is supposed to be the \"gap\" between the stack and the binary."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-12-08T10:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "RHSA-2017:2798",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2798"
        },
        {
          "name": "RHSA-2017:2795",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2795"
        },
        {
          "name": "1039434",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039434"
        },
        {
          "name": "RHSA-2017:2801",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2801"
        },
        {
          "name": "RHSA-2017:2796",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2796"
        },
        {
          "name": "101010",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101010"
        },
        {
          "name": "RHSA-2017:2799",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2799"
        },
        {
          "name": "RHSA-2017:2794",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2794"
        },
        {
          "name": "RHSA-2017:2793",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2793"
        },
        {
          "name": "RHSA-2017:2797",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2797"
        },
        {
          "name": "RHSA-2017:2802",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2802"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt"
        },
        {
          "name": "RHSA-2017:2800",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2017:2800"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "2017-09-25",
          "ID": "CVE-2017-1000253",
          "REQUESTER": "qsa@qualys.com",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. With CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, and a normal top-down address allocation strategy, load_elf_binary() will attempt to map a PIE binary into an address range immediately below mm-\u003emmap_base. Unfortunately, load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary which means that, while the first PT_LOAD segment is mapped below mm-\u003emmap_base, the subsequent PT_LOAD segment(s) end up being mapped above mm-\u003emmap_base into the are that is supposed to be the \"gap\" between the stack and the binary."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2017:2798",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2798"
            },
            {
              "name": "RHSA-2017:2795",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2795"
            },
            {
              "name": "1039434",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039434"
            },
            {
              "name": "RHSA-2017:2801",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2801"
            },
            {
              "name": "RHSA-2017:2796",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2796"
            },
            {
              "name": "101010",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101010"
            },
            {
              "name": "RHSA-2017:2799",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2799"
            },
            {
              "name": "RHSA-2017:2794",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2794"
            },
            {
              "name": "RHSA-2017:2793",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2793"
            },
            {
              "name": "RHSA-2017:2797",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2797"
            },
            {
              "name": "RHSA-2017:2802",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2802"
            },
            {
              "name": "https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt",
              "refsource": "MISC",
              "url": "https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt"
            },
            {
              "name": "RHSA-2017:2800",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2017:2800"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-1000253",
    "datePublished": "2017-10-04T01:00:00",
    "dateReserved": "2017-10-03T00:00:00",
    "dateUpdated": "2024-09-10T03:55:14.762Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted