The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-12-16T01:00:00
Updated: 2024-08-05T20:59:17.421Z
Reserved: 2017-12-15T00:00:00
Link: CVE-2017-17712
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2017-12-16T01:29:00.190
Modified: 2023-06-21T21:01:22.247
Link: CVE-2017-17712
Redhat