Vulnerability Description
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 4.14.2 |
Related Weaknesses (CWE)
References
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=373c45Patch
- http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.2Release Notes
- http://www.securityfocus.com/bid/101969Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2018:0502
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1431ExploitIssue TrackingPatch
- https://github.com/torvalds/linux/commit/373c4557d2aa362702c4c2d41288fb1e54990b7Patch
- https://usn.ubuntu.com/3617-1/
- https://usn.ubuntu.com/3617-2/
- https://usn.ubuntu.com/3617-3/
- https://usn.ubuntu.com/3619-1/
- https://usn.ubuntu.com/3619-2/
- https://usn.ubuntu.com/3632-1/
- https://www.exploit-db.com/exploits/43178/ExploitThird Party AdvisoryVDB Entry
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=373c45Patch
- http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.2Release Notes
FAQ
What is CVE-2017-16994?
CVE-2017-16994 is a vulnerability with a CVSS score of 5.5 (MEDIUM). The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kerne...
How severe is CVE-2017-16994?
CVE-2017-16994 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-16994?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.