The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3) to cause a kernel stack buffer overflow by executing a crafted sequence of system calls that encounter a missing SHA-3 initialization.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
19 Jan 2023, 16:26
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* |
|
References | (UBUNTU) https://usn.ubuntu.com/3583-2/ - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2018/01/msg00004.html - Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2018:2948 - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3632-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3619-1/ - Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2018/dsa-4082 - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3617-3/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3617-2/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3617-1/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3619-2/ - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3583-1/ - Third Party Advisory | |
First Time |
Canonical
Canonical ubuntu Linux |
Information
Published : 2017-12-20 23:29
Updated : 2023-12-10 12:15
NVD link : CVE-2017-17806
Mitre link : CVE-2017-17806
CVE.ORG link : CVE-2017-17806
JSON object : View
Products Affected
suse
- linux_enterprise_server
- linux_enterprise_desktop
- linux_enterprise_server_for_raspberry_pi
opensuse
- leap
linux
- linux_kernel
opensuse_project
- leap
canonical
- ubuntu_linux
debian
- debian_linux
CWE
CWE-787
Out-of-bounds Write