Packages

  • Status Researching
  • Percent Complete
    20%
  • Task Type Outdated package
  • Category core
  • Assigned To Francesco Marinucci (FranzMari)
  • Operating System
  • Severity Critical
  • Priority Normal
  • Reported Version
  • Due in Version Undecided
  • Due Date Undecided
  • Votes 0
  • Private No
Attached to Project: Packages
Opened by Alexander Waldemar Ahjolinna (ahjolinna) - 2017-06-21
Last edited by Francesco Marinucci (FranzMari) - 2017-12-10

FS#1982 - ‎ (kernel) CVE-2017-1000364 - Serious privilege escalation bug - Stack Clash


https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
https://blog.qualys.com/securitylabs/2017/06/19/the-stack-clash
https://arstechnica.com/security/2017/06/12-year-old-security-hole-in-unix-based-oses-isnt-plugged-after-all/
CVE-2017-1082 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1082
CVE-2017-1083 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1083
CVE-2017-1084 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1084
CVE-2017-1085 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1085
CVE-2017-3629 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3629
CVE-2017-3630 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3630
CVE-2017-3631 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-3631
CVE-2017-1000364 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000364
CVE-2017-1000365 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000365
CVE-2017-1000366 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000366
CVE-2017-1000367 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000367
CVE-2017-1000369 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000369
CVE-2017-1000370 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000370
CVE-2017-1000371 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000371
CVE-2017-1000372 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000372
CVE-2017-1000373 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000373
CVE-2017-1000374 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000374
CVE-2017-1000375 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000375
CVE-2017-1000376 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000376
CVE-2017-1000377 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000377
CVE-2017-1000378 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000378
CVE-2017-1000379 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000379

This task does not depend on any other tasks.

Francesco Marinucci (FranzMari)
Sunday, 10 December 2017, 21:26 GMT
Should be fixed with linux 4.13.11, can someone confirm?
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-1000364.html

Loading...