Oval Definition:	oval:com.ubuntu.xenial:def:2017178630000000
Revision Date: 2017-12-27 Version: 1 Title: CVE-2017-17863 on Ubuntu 16.04 LTS (xenial) - high. Description: kernel/bpf/verifier.c in the Linux kernel 4.9.x through 4.9.71 does not check the relationship between pointer values and the BPF stack, which allows local users to cause a denial of service (integer overflow or invalid memory access) or possibly have unspecified other impact. Jann Horn discovered that the Berkeley Packet Filter (BPF) implementation in the Linux kernel did not properly check the relationship between pointer values and the BPF stack. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-17863 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information linux-flo: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'abandoned'). OR linux-mako: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'abandoned').
BACK