Rapid7 Vulnerability & Exploit Database

Ubuntu: (Multiple Advisories) (CVE-2017-1000364): Linux kernel regression

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Ubuntu: (Multiple Advisories) (CVE-2017-1000364): Linux kernel regression

Severity

CVSS

(AV:L/AC:H/Au:N/C:C/I:C/A:C)

Published

06/19/2017

Created

07/25/2018

Added

06/20/2017

Modified

08/25/2021

Description

An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).

Solution(s)

ubuntu-upgrade-linux-image-3-13-0-121-generic
ubuntu-upgrade-linux-image-3-13-0-121-generic-lpae
ubuntu-upgrade-linux-image-3-13-0-121-lowlatency
ubuntu-upgrade-linux-image-3-13-0-121-powerpc-e500
ubuntu-upgrade-linux-image-3-13-0-121-powerpc-e500mc
ubuntu-upgrade-linux-image-3-13-0-121-powerpc-smp
ubuntu-upgrade-linux-image-3-13-0-121-powerpc64-emb
ubuntu-upgrade-linux-image-3-13-0-121-powerpc64-smp
ubuntu-upgrade-linux-image-3-2-0-128-generic
ubuntu-upgrade-linux-image-3-2-0-128-generic-pae
ubuntu-upgrade-linux-image-3-2-0-128-highbank
ubuntu-upgrade-linux-image-3-2-0-128-omap
ubuntu-upgrade-linux-image-3-2-0-128-powerpc-smp
ubuntu-upgrade-linux-image-3-2-0-128-powerpc64-smp
ubuntu-upgrade-linux-image-3-2-0-128-virtual
ubuntu-upgrade-linux-image-3-2-0-129-generic
ubuntu-upgrade-linux-image-3-2-0-129-generic-pae
ubuntu-upgrade-linux-image-3-2-0-129-highbank
ubuntu-upgrade-linux-image-3-2-0-129-omap
ubuntu-upgrade-linux-image-3-2-0-129-powerpc-smp
ubuntu-upgrade-linux-image-3-2-0-129-powerpc64-smp
ubuntu-upgrade-linux-image-3-2-0-129-virtual
ubuntu-upgrade-linux-image-4-10-0-1008-raspi2
ubuntu-upgrade-linux-image-4-10-0-24-generic
ubuntu-upgrade-linux-image-4-10-0-24-generic-lpae
ubuntu-upgrade-linux-image-4-10-0-24-lowlatency
ubuntu-upgrade-linux-image-4-4-0-1016-gke
ubuntu-upgrade-linux-image-4-4-0-1020-aws
ubuntu-upgrade-linux-image-4-4-0-1059-raspi2
ubuntu-upgrade-linux-image-4-4-0-1061-snapdragon
ubuntu-upgrade-linux-image-4-4-0-81-generic
ubuntu-upgrade-linux-image-4-4-0-81-generic-lpae
ubuntu-upgrade-linux-image-4-4-0-81-lowlatency
ubuntu-upgrade-linux-image-4-4-0-81-powerpc-e500mc
ubuntu-upgrade-linux-image-4-4-0-81-powerpc-smp
ubuntu-upgrade-linux-image-4-4-0-81-powerpc64-emb
ubuntu-upgrade-linux-image-4-4-0-81-powerpc64-smp
ubuntu-upgrade-linux-image-4-8-0-1040-raspi2
ubuntu-upgrade-linux-image-4-8-0-56-generic
ubuntu-upgrade-linux-image-4-8-0-56-generic-lpae
ubuntu-upgrade-linux-image-4-8-0-56-lowlatency
ubuntu-upgrade-linux-image-4-8-0-56-powerpc-e500mc
ubuntu-upgrade-linux-image-4-8-0-56-powerpc-smp
ubuntu-upgrade-linux-image-4-8-0-56-powerpc64-emb
ubuntu-upgrade-linux-image-aws
ubuntu-upgrade-linux-image-generic
ubuntu-upgrade-linux-image-generic-hwe-16-04
ubuntu-upgrade-linux-image-generic-lpae
ubuntu-upgrade-linux-image-generic-lpae-hwe-16-04
ubuntu-upgrade-linux-image-generic-lpae-lts-trusty
ubuntu-upgrade-linux-image-generic-lpae-lts-xenial
ubuntu-upgrade-linux-image-generic-lts-trusty
ubuntu-upgrade-linux-image-generic-lts-xenial
ubuntu-upgrade-linux-image-generic-pae
ubuntu-upgrade-linux-image-gke
ubuntu-upgrade-linux-image-highbank
ubuntu-upgrade-linux-image-lowlatency
ubuntu-upgrade-linux-image-lowlatency-hwe-16-04
ubuntu-upgrade-linux-image-lowlatency-lts-xenial
ubuntu-upgrade-linux-image-omap
ubuntu-upgrade-linux-image-powerpc
ubuntu-upgrade-linux-image-powerpc-e500
ubuntu-upgrade-linux-image-powerpc-e500mc
ubuntu-upgrade-linux-image-powerpc-e500mc-lts-xenial
ubuntu-upgrade-linux-image-powerpc-smp
ubuntu-upgrade-linux-image-powerpc-smp-lts-xenial
ubuntu-upgrade-linux-image-powerpc64-emb
ubuntu-upgrade-linux-image-powerpc64-emb-lts-xenial
ubuntu-upgrade-linux-image-powerpc64-smp
ubuntu-upgrade-linux-image-powerpc64-smp-lts-xenial
ubuntu-upgrade-linux-image-raspi2
ubuntu-upgrade-linux-image-snapdragon
ubuntu-upgrade-linux-image-virtual

References

USN-3324-1
USN-3325-1
USN-3326-1
USN-3327-1
USN-3328-1
USN-3329-1
USN-3330-1
USN-3331-1
USN-3332-1
USN-3333-1
USN-3334-1
USN-3335-1
USN-3335-2
USN-3338-1
USN-3338-2
DLA-993-1
DSA-3886
99130
1038724
RHSA-2017:1482
RHSA-2017:1483
RHSA-2017:1484
RHSA-2017:1485
RHSA-2017:1486
RHSA-2017:1487
RHSA-2017:1488
RHSA-2017:1489
RHSA-2017:1490
RHSA-2017:1491
RHSA-2017:1567
RHSA-2017:1616
RHSA-2017:1647
RHSA-2017:1712
CVE-2017-1000364

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Ubuntu: (Multiple Advisories) (CVE-2017-1000364): Linux kernel regression

Ubuntu: (Multiple Advisories) (CVE-2017-1000364): Linux kernel regression

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.