CVE-2017-18509
HighAn issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land and cause an inet_csk_listen_stop general protection fault, or potentially execute arbitrary code under certain circumstances. The issue can be triggered as root (e.g., inside a default LXC container or with the CAP_NET_ADMIN capability) or after namespace unsharing. This occurs because sk_type and protocol are not checked in the appropriate part of the ip6_mroute_* functions. NOTE: this affects Linux distributions that use 4.9.x longterm kernels before 4.9.187.
CVSS 3.1 score
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness type
CWE-20CVE-2017-18509 is a Improper Input Validation vulnerability
What is Improper Input Validation?
The product receives input but does not validate it correctly, allowing attackers to craft inputs that cause unexpected behavior. Learn more on MITRE CWE
References
The following references provide additional information about CVE-2017-18509 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.
-
Packet Stormhttp://packetstormsecurity.com/files/154059/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlThird Party Advisory VDB Entry
-
Mailing List Third Party Advisory
-
Mailing List Third Party Advisory
-
Mailing List Third Party Advisory
-
Exploit Third Party Advisory
-
Debian Securityhttps://salsa.debian.org/kernel-team/linux/commit/baefcdc2f29923e7325ce4e1a72c3ff0a9800f32Third Party Advisory
-
Mailing List Third Party Advisory
-
Third Party Advisory
-
-
Ubuntu Securityhttps://usn.ubuntu.com/4145-1/Third Party Advisory
-
Debian Securityhttps://www.debian.org/security/2019/dsa-4497Third Party Advisory
-
PatchKernel patch commithttps://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=99253eb750fda6a644d5188fb26c43bad8d5a745
-
PatchKernel patch commithttps://github.com/torvalds/linux/commit/99253eb750fda6a644d5188fb26c43bad8d5a745
Frequently asked questions
-
What is CVE-2017-18509?
CVE-2017-18509 is a High severity Linux kernel vulnerability with a CVSS score of 7.8 out of 10 , classified as an Improper Input Validation flaw (CWE-20) . CVE-2017-18509 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
-
What is the CVSS score for CVE-2017-18509?
CVE-2017-18509 has a CVSS score of 7.8 out of 10, rated High severity (CVSS 3.1). The vector string is
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. -
Is there a patch available for CVE-2017-18509?
No patch is currently available for CVE-2017-18509. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
-
Is CVE-2017-18509 actively exploited?
No — CVE-2017-18509 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
-
What is Improper Input Validation (CWE-20)?
The product receives input but does not validate it correctly, allowing attackers to craft inputs that cause unexpected behavior. View CWE-20 on MITRE CWE →