CVE-2017-16994

medium

Description

The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.

References

https://usn.ubuntu.com/3632-1/

https://usn.ubuntu.com/3619-2/

https://usn.ubuntu.com/3619-1/

https://usn.ubuntu.com/3617-3/

https://usn.ubuntu.com/3617-2/

https://usn.ubuntu.com/3617-1/

https://github.com/torvalds/linux/commit/373c4557d2aa362702c4c2d41288fb1e54990b7c

https://access.redhat.com/errata/RHSA-2018:0502

http://www.securityfocus.com/bid/101969

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.2

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=373c4557d2aa362702c4c2d41288fb1e54990b7c

Details

Source: Mitre, NVD

Published: 2017-11-27

Updated: 2018-04-25

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium