The ip_cmsg_recv_checksum function in net/ipv4/ip_sockglue.c in the Linux kernel before 4.10.1 has incorrect expectations about skb data layout, which allows local users to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted system calls, as demonstrated by use of the MSG_MORE flag in conjunction with loopback UDP transmission.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-03-01T20:00:00
Updated: 2024-08-05T15:25:49.206Z
Reserved: 2017-02-26T00:00:00
Link: CVE-2017-6347
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2017-03-01T20:59:00.533
Modified: 2023-02-10T00:53:31.020
Link: CVE-2017-6347
Redhat