Vulnerability CVE-2017-11171

Vulnerability Name:

CVE-2017-11171 (CCN-129053)

Assigned:

2017-03-13

Published:

2017-03-13

Updated:

2019-10-03

Summary:

Bad reference counting in the context of accept_ice_connection() in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data (an invalid magic cookie). Each failed authentication attempt will leak a file descriptor in gnome-session. When the maximum number of file descriptors is exhausted in the gnome-session process, it will enter an infinite loop trying to communicate without success, consuming 100% of the CPU. The graphical session associated with the gnome-session process will stop working correctly, because communication with gnome-session is no longer possible.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-835

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2017-11171

Source: CCN
Type: Bugzilla Bug 1025068
(CVE-2017-2626) VUL-0: CVE-2017-2626: libICE: Weak Entropy Usage in Session Keys in libICE

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1025068

Source: XF
Type: UNKNOWN
gnome-session-cve201711171-dos(129053)

Source: CCN
Type: gnome-session GIT Repository
gsm] Delay the creation of the GsmXSMPClient until it really exists

Source: CONFIRM
Type: Third Party Advisory
https://github.com/GNOME/gnome-session/commit/b0dc999e0b45355314616321dbb6cb71e729fc9d

Vulnerable Configuration:

Configuration 1:

cpe:/a:gnome:gnome-session:*:*:*:*:*:*:*:* (Version <= 2.29.92)

Configuration CCN 1:

cpe:/a:gnome:gnome-session:2.29.92:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201711171	V	CVE-2017-11171	2022-09-02
oval:org.opensuse.security:def:30276	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:33044	P	Security update for postgresql, postgresql13, postgresql14 (Important)	2021-11-20
oval:org.opensuse.security:def:34556	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:35271	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:30125	P	Security update for transfig (Moderate)	2021-09-16
oval:org.opensuse.security:def:31266	P	Security update for transfig (Moderate)	2021-09-16
oval:org.opensuse.security:def:33711	P	Security update for xen (Important)	2021-09-03
oval:org.opensuse.security:def:32995	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:30232	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:33953	P	Security update for djvulibre (Important)	2021-08-05
oval:org.opensuse.security:def:34472	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:30213	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:34461	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:34460	P	Security update for the Linux Kernel (Important)	2021-06-09
oval:org.opensuse.security:def:32938	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:30070	P	Security update for samba (Important)	2021-04-29
oval:org.opensuse.security:def:31162	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:30174	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:35244	P	Security update for openexr (Moderate)	2021-04-07
oval:org.opensuse.security:def:33106	P	Security update for opensc (Moderate)	2021-03-31
oval:org.opensuse.security:def:33788	P	Security update for openssl-1_1 (Important)	2021-03-25
oval:org.opensuse.security:def:29483	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:33083	P	Security update for avahi (Moderate)	2021-02-23
oval:org.opensuse.security:def:29472	P	Security update for java-1_7_1-ibm (Important)	2021-02-18
oval:org.opensuse.security:def:29471	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:31222	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:31201	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:28952	P	Security update for MozillaFirefox (Important)	2021-01-12
oval:org.opensuse.security:def:34325	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:35953	P	libgtop-2.28.0-1.9.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35994	P	mozilla-xulrunner192-1.9.2.27-0.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:33150	P	libgcc_s1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33482	P	Security update for OpenSC	2020-12-01
oval:org.opensuse.security:def:28746	P	Security update for libjasper	2020-12-01
oval:org.opensuse.security:def:32320	P	Security update for rzsz (Moderate)	2020-12-01
oval:org.opensuse.security:def:34791	P	Security update for a2ps	2020-12-01
oval:org.opensuse.security:def:29001	P	Security update for Linux kernel	2020-12-01
oval:org.opensuse.security:def:31942	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:32409	P	Security update for wget (Moderate)	2020-12-01
oval:org.opensuse.security:def:35097	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30914	P	Security update for gcc43 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30462	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:29101	P	Recommended update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:32695	P	krb5-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28310	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:30758	P	Security update for apache2-mod_jk (Moderate)	2020-12-01
oval:org.opensuse.security:def:34217	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29687	P	Security update for evince	2020-12-01
oval:org.opensuse.security:def:28389	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:31057	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29917	P	Security update for libdb-4_5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33481	P	Security update for libnetpbm	2020-12-01
oval:org.opensuse.security:def:28662	P	Security update for finch	2020-12-01
oval:org.opensuse.security:def:34692	P	Security update for xorg-x11-libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33827	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:33575	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:31904	P	Security update for foomatic-filters (Moderate)	2020-12-01
oval:org.opensuse.security:def:32332	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:34938	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:30451	P	Security update for Mozilla XULrunner	2020-12-01
oval:org.opensuse.security:def:33864	P	Security update for jasper	2020-12-01
oval:org.opensuse.security:def:29057	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:32638	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35205	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:30668	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:34168	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:29775	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:29555	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:35315	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:28322	P	Security update for perl (Moderate)	2020-12-01
oval:org.opensuse.security:def:30902	P	Security update for flac	2020-12-01
oval:org.opensuse.security:def:34281	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:29831	P	Security update for jpeg (Low)	2020-12-01
oval:org.opensuse.security:def:28605	P	Security update for wireshark	2020-12-01
oval:org.opensuse.security:def:35003	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:33493	P	Security update for udev	2020-12-01
oval:org.opensuse.security:def:28898	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:32321	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:34848	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:30450	P	Security update for libvorbis	2020-12-01
oval:org.opensuse.security:def:33807	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:29040	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32544	P	libMagickCore1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35156	P	Security update for the SUSE Linux Enterprise 11 SP3 Kernel for Teradata (Important)	2020-12-01
oval:org.opensuse.security:def:30951	P	Security update for gnome-session (Moderate)	2020-12-01
oval:org.opensuse.security:def:30536	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34110	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:29739	P	Security update for freetype2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32782	P	rsync on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28311	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:30815	P	Security update for coreutils (Important)	2020-12-01
oval:org.opensuse.security:def:34256	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:29774	P	Security update for glibc	2020-12-01
oval:org.opensuse.security:def:28520	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:31113	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34963	P	Security update for freetype2	2020-12-01
oval:com.ubuntu.trusty:def:201711171000	V	CVE-2017-11171 on Ubuntu 14.04 LTS (trusty) - medium.	2017-07-11
oval:com.ubuntu.xenial:def:201711171000	V	CVE-2017-11171 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-11
oval:com.ubuntu.xenial:def:2017111710000000	V	CVE-2017-11171 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-11

BACK