vulnerability

Huawei EulerOS: CVE-2017-1000112: kernel security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	2017-10-04	2017-11-30	2025-04-25

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

2017-10-04

Added

2017-11-30

Modified

2025-04-25

Description

An exploitable memory corruption flaw was found in the Linux kernel. The append path can be erroneously switched from UFO to non-UFO in ip_ufo_append_data() when building an UFO packet with MSG_MORE option. If unprivileged user namespaces are available, this flaw can be exploited to gain root privileges.

Solution(s)

huawei-euleros-2_0_sp1-upgrade-kernelhuawei-euleros-2_0_sp1-upgrade-kernel-debughuawei-euleros-2_0_sp1-upgrade-kernel-debuginfohuawei-euleros-2_0_sp1-upgrade-kernel-debuginfo-common-x86_64huawei-euleros-2_0_sp1-upgrade-kernel-develhuawei-euleros-2_0_sp1-upgrade-kernel-headershuawei-euleros-2_0_sp1-upgrade-kernel-toolshuawei-euleros-2_0_sp1-upgrade-kernel-tools-libshuawei-euleros-2_0_sp1-upgrade-perfhuawei-euleros-2_0_sp1-upgrade-python-perf

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today