vulnerability

Ubuntu: (Multiple Advisories) (CVE-2017-1000111): Linux kernel vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Aug 11, 2017	Dec 20, 2017	Mar 27, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Aug 11, 2017

Added

Dec 20, 2017

Modified

Mar 27, 2026

Description

Linux kernel: heap out-of-bounds in AF_PACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes socket state may race with safety checks in packet_set_ring. Previously with PACKET_VERSION. This time with PACKET_RESERVE. The solution is similar: lock the socket for the update. This issue may be exploitable, we did not investigate further. As this issue affects PF_PACKET sockets, it requires CAP_NET_RAW in the process namespace. But note that with user namespaces enabled, any process can create a namespace in which it has CAP_NET_RAW.

Solutions

ubuntu-upgrade-linux-image-3-13-0-128-genericubuntu-upgrade-linux-image-3-13-0-128-generic-lpaeubuntu-upgrade-linux-image-3-13-0-128-lowlatencyubuntu-upgrade-linux-image-3-13-0-128-powerpc-e500ubuntu-upgrade-linux-image-3-13-0-128-powerpc-e500mcubuntu-upgrade-linux-image-3-13-0-128-powerpc-smpubuntu-upgrade-linux-image-3-13-0-128-powerpc64-embubuntu-upgrade-linux-image-3-13-0-128-powerpc64-smpubuntu-upgrade-linux-image-4-10-0-1015-raspi2ubuntu-upgrade-linux-image-4-10-0-32-genericubuntu-upgrade-linux-image-4-10-0-32-generic-lpaeubuntu-upgrade-linux-image-4-10-0-32-lowlatencyubuntu-upgrade-linux-image-4-4-0-1026-gkeubuntu-upgrade-linux-image-4-4-0-1030-awsubuntu-upgrade-linux-image-4-4-0-1069-raspi2ubuntu-upgrade-linux-image-4-4-0-1071-snapdragonubuntu-upgrade-linux-image-4-4-0-91-genericubuntu-upgrade-linux-image-4-4-0-91-generic-lpaeubuntu-upgrade-linux-image-4-4-0-91-lowlatencyubuntu-upgrade-linux-image-4-4-0-91-powerpc-e500mcubuntu-upgrade-linux-image-4-4-0-91-powerpc-smpubuntu-upgrade-linux-image-4-4-0-91-powerpc64-embubuntu-upgrade-linux-image-4-4-0-91-powerpc64-smpubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-hwe-16-04ubuntu-upgrade-linux-image-generic-lpaeubuntu-upgrade-linux-image-generic-lpae-hwe-16-04ubuntu-upgrade-linux-image-generic-lpae-lts-trustyubuntu-upgrade-linux-image-generic-lpae-lts-xenialubuntu-upgrade-linux-image-generic-lts-trustyubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-gkeubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-hwe-16-04ubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-powerpc-e500ubuntu-upgrade-linux-image-powerpc-e500mcubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenialubuntu-upgrade-linux-image-powerpc-smpubuntu-upgrade-linux-image-powerpc-smp-lts-xenialubuntu-upgrade-linux-image-powerpc64-embubuntu-upgrade-linux-image-powerpc64-emb-lts-xenialubuntu-upgrade-linux-image-powerpc64-smpubuntu-upgrade-linux-image-powerpc64-smp-lts-xenialubuntu-upgrade-linux-image-raspi2ubuntu-upgrade-linux-image-snapdragon

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report