vulnerability

Debian: CVE-2017-7895: linux -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Apr 28, 2017	Jun 20, 2017	Nov 27, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Apr 28, 2017

Added

Jun 20, 2017

Modified

Nov 27, 2024

Description

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

Solution

debian-upgrade-linux

References

CVE-2017-7895
https://attackerkb.com/topics/CVE-2017-7895
DEBIAN-DLA-993-1
DEBIAN-DSA-3886

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today