Executive Summary

Informations
NameCVE-2017-2634First vendor Publication2018-07-27
VendorCveLast vendor Modification2018-09-24

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

It was found that the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation before 2.6.22.17 used the IPv4-only inet_sk_rebuild_header() function for both IPv4 and IPv6 DCCP connections, which could result in memory corruptions. A remote attacker could use this flaw to crash the system.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2634

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Os783
Os1
Os1
Os2
Os1

Nessus® Vulnerability Scanner

DateDescription
2017-07-13Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-0323.nasl - Type : ACT_GATHER_INFO
2017-03-01Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-0346.nasl - Type : ACT_GATHER_INFO
2017-03-01Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-0347.nasl - Type : ACT_GATHER_INFO
2017-02-27Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2017-0323.nasl - Type : ACT_GATHER_INFO
2017-02-27Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2017-0323.nasl - Type : ACT_GATHER_INFO
2017-02-27Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-0323.nasl - Type : ACT_GATHER_INFO
2017-02-27Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20170224_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/96529
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2634
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=f...
REDHAT http://rhn.redhat.com/errata/RHSA-2017-0323.html
http://rhn.redhat.com/errata/RHSA-2017-0346.html
http://rhn.redhat.com/errata/RHSA-2017-0347.html
SECTRACK http://www.securitytracker.com/id/1037909

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2018-10-30 12:10:30
  • Multiple Updates
2018-09-25 00:20:13
  • Multiple Updates
2018-07-29 09:19:25
  • Multiple Updates
2018-07-28 00:19:02
  • First insertion