Vulnerability Description
The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation. This affects Linux Kernel versions 4.11.5 and earlier. It appears that this feature was introduced in the Linux Kernel version 2.6.23.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 2.6.23, < 3.2.91 |
References
- http://www.debian.org/security/2017/dsa-3927Third Party Advisory
- http://www.debian.org/security/2017/dsa-3945Third Party Advisory
- http://www.securityfocus.com/bid/99156Third Party AdvisoryVDB Entry
- https://access.redhat.com/security/cve/CVE-2017-1000365Third Party AdvisoryVDB Entry
- https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txtThird Party Advisory
- http://www.debian.org/security/2017/dsa-3927Third Party Advisory
- http://www.debian.org/security/2017/dsa-3945Third Party Advisory
- http://www.securityfocus.com/bid/99156Third Party AdvisoryVDB Entry
- https://access.redhat.com/security/cve/CVE-2017-1000365Third Party AdvisoryVDB Entry
- https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txtThird Party Advisory
FAQ
What is CVE-2017-1000365?
CVE-2017-1000365 is a vulnerability with a CVSS score of 7.8 (HIGH). The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment point...
How severe is CVE-2017-1000365?
CVE-2017-1000365 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-1000365?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.