1
PublicDateAtUSN: 2017-10-11
2
Candidate: CVE-2017-15274
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15274
6
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5649645d725c73df4302428ee4e02c869248b4c5
7
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.5
8
https://bugzilla.suse.com/show_bug.cgi?id=1045327
9
https://github.com/torvalds/linux/commit/5649645d725c73df4302428ee4e02c869248b4c5
10
https://patchwork.kernel.org/patch/9781573/
11
https://usn.ubuntu.com/usn/usn-3583-1
12
https://usn.ubuntu.com/usn/usn-3583-2
14
security/keys/keyctl.c in the Linux kernel before 4.11.5 does not consider
15
the case of a NULL payload in conjunction with a nonzero length value,
16
which allows local users to cause a denial of service (NULL pointer
17
dereference and OOPS) via a crafted add_key or keyctl system call, a
18
different vulnerability than CVE-2017-12192.
20
It was discovered that the key management subsystem in the Linux kernel did
21
not properly handle NULL payloads with non-zero length values. A local
22
attacker could use this to cause a denial of service (system crash).
24
sbeattie> SuSE bug report points to LTP reproducer
31
break-fix: - 5649645d725c73df4302428ee4e02c869248b4c5
32
upstream_linux: released (4.12~rc5)
33
precise/esm_linux: ignored (was needed ESM criteria)
34
trusty_linux: released (3.13.0-142.191)
35
vivid/ubuntu-core_linux: ignored (was needed ESM criteria)
36
xenial_linux: released (4.4.0-87.110)
37
zesty_linux: ignored (was pending [4.10.0-43.47] now end-of-life)
38
artful_linux: not-affected (4.11.0-10.15)
39
bionic_linux: not-affected (4.13.0-16.19)
40
devel_linux: not-affected (4.15.0-20.21)
42
Patches_linux-ti-omap4:
43
upstream_linux-ti-omap4: released (4.12~rc5)
44
precise/esm_linux-ti-omap4: DNE
45
trusty_linux-ti-omap4: DNE
46
vivid/ubuntu-core_linux-ti-omap4: DNE
47
xenial_linux-ti-omap4: DNE
48
zesty_linux-ti-omap4: DNE
49
artful_linux-ti-omap4: DNE
50
bionic_linux-ti-omap4: DNE
51
devel_linux-ti-omap4: DNE
53
Patches_linux-linaro-omap:
54
upstream_linux-linaro-omap: released (4.12~rc5)
55
precise/esm_linux-linaro-omap: DNE
56
trusty_linux-linaro-omap: DNE
57
vivid/ubuntu-core_linux-linaro-omap: DNE
58
xenial_linux-linaro-omap: DNE
59
zesty_linux-linaro-omap: DNE
60
artful_linux-linaro-omap: DNE
61
bionic_linux-linaro-omap: DNE
62
devel_linux-linaro-omap: DNE
64
Patches_linux-linaro-shared:
65
upstream_linux-linaro-shared: released (4.12~rc5)
66
precise/esm_linux-linaro-shared: DNE
67
trusty_linux-linaro-shared: DNE
68
vivid/ubuntu-core_linux-linaro-shared: DNE
69
xenial_linux-linaro-shared: DNE
70
zesty_linux-linaro-shared: DNE
71
artful_linux-linaro-shared: DNE
72
bionic_linux-linaro-shared: DNE
73
devel_linux-linaro-shared: DNE
75
Patches_linux-linaro-vexpress:
76
upstream_linux-linaro-vexpress: released (4.12~rc5)
77
precise/esm_linux-linaro-vexpress: DNE
78
trusty_linux-linaro-vexpress: DNE
79
vivid/ubuntu-core_linux-linaro-vexpress: DNE
80
xenial_linux-linaro-vexpress: DNE
81
zesty_linux-linaro-vexpress: DNE
82
artful_linux-linaro-vexpress: DNE
83
bionic_linux-linaro-vexpress: DNE
84
devel_linux-linaro-vexpress: DNE
86
Patches_linux-qcm-msm:
87
upstream_linux-qcm-msm: released (4.12~rc5)
88
precise/esm_linux-qcm-msm: DNE
89
trusty_linux-qcm-msm: DNE
90
vivid/ubuntu-core_linux-qcm-msm: DNE
91
xenial_linux-qcm-msm: DNE
92
zesty_linux-qcm-msm: DNE
93
artful_linux-qcm-msm: DNE
94
bionic_linux-qcm-msm: DNE
95
devel_linux-qcm-msm: DNE
97
Tags_linux-armadaxp: not-ue
98
Patches_linux-armadaxp:
99
upstream_linux-armadaxp: released (4.12~rc5)
100
precise/esm_linux-armadaxp: DNE
101
trusty_linux-armadaxp: DNE
102
vivid/ubuntu-core_linux-armadaxp: DNE
103
xenial_linux-armadaxp: DNE
104
zesty_linux-armadaxp: DNE
105
artful_linux-armadaxp: DNE
106
bionic_linux-armadaxp: DNE
107
devel_linux-armadaxp: DNE
109
Tags_linux-lts-quantal: not-ue
110
Patches_linux-lts-quantal: DNE
111
upstream_linux-lts-quantal: released (4.12~rc5)
112
precise/esm_linux-lts-quantal: ignored (end-of-life)
113
trusty_linux-lts-quantal: DNE
114
vivid/ubuntu-core_linux-lts-quantal: DNE
115
xenial_linux-lts-quantal: DNE
116
zesty_linux-lts-quantal: DNE
117
artful_linux-lts-quantal: DNE
118
bionic_linux-lts-quantal: DNE
119
devel_linux-lts-quantal: DNE
121
Patches_linux-lts-raring:
122
upstream_linux-lts-raring: released (4.12~rc5)
123
precise/esm_linux-lts-raring: ignored (end-of-life)
124
trusty_linux-lts-raring: DNE
125
vivid/ubuntu-core_linux-lts-raring: DNE
126
xenial_linux-lts-raring: DNE
127
zesty_linux-lts-raring: DNE
128
artful_linux-lts-raring: DNE
129
bionic_linux-lts-raring: DNE
130
devel_linux-lts-raring: DNE
132
Tags_linux-lts-saucy: not-ue
133
Patches_linux-lts-saucy:
134
upstream_linux-lts-saucy: released (4.12~rc5)
135
precise/esm_linux-lts-saucy: ignored (end-of-life)
136
trusty_linux-lts-saucy: DNE
137
vivid/ubuntu-core_linux-lts-saucy: DNE
138
xenial_linux-lts-saucy: DNE
139
zesty_linux-lts-saucy: DNE
140
artful_linux-lts-saucy: DNE
141
bionic_linux-lts-saucy: DNE
142
devel_linux-lts-saucy: DNE
144
Patches_linux-lts-trusty:
145
upstream_linux-lts-trusty: released (4.12~rc5)
146
precise/esm_linux-lts-trusty: released (3.13.0-142.191~precise1)
147
trusty_linux-lts-trusty: DNE
148
vivid/ubuntu-core_linux-lts-trusty: DNE
149
xenial_linux-lts-trusty: DNE
150
zesty_linux-lts-trusty: DNE
151
artful_linux-lts-trusty: DNE
152
bionic_linux-lts-trusty: DNE
153
devel_linux-lts-trusty: DNE
155
Patches_linux-goldfish:
156
upstream_linux-goldfish: released (4.12~rc5)
157
precise/esm_linux-goldfish: DNE
158
trusty_linux-goldfish: ignored (abandoned)
159
vivid/ubuntu-core_linux-goldfish: DNE
160
xenial_linux-goldfish: ignored (was needed now end-of-life)
161
zesty_linux-goldfish: ignored (reached end-of-life)
162
artful_linux-goldfish: DNE
163
bionic_linux-goldfish: DNE
164
devel_linux-goldfish: DNE
166
Patches_linux-grouper:
167
upstream_linux-grouper: released (4.12~rc5)
168
precise/esm_linux-grouper: DNE
169
trusty_linux-grouper: ignored (abandoned)
170
vivid/ubuntu-core_linux-grouper: DNE
171
xenial_linux-grouper: DNE
172
zesty_linux-grouper: DNE
173
artful_linux-grouper: DNE
174
bionic_linux-grouper: DNE
175
devel_linux-grouper: DNE
177
Patches_linux-maguro:
178
upstream_linux-maguro: released (4.12~rc5)
179
precise/esm_linux-maguro: DNE
180
trusty_linux-maguro: ignored (abandoned)
181
vivid/ubuntu-core_linux-maguro: DNE
182
xenial_linux-maguro: DNE
183
zesty_linux-maguro: DNE
184
artful_linux-maguro: DNE
185
bionic_linux-maguro: DNE
186
devel_linux-maguro: DNE
189
upstream_linux-mako: released (4.12~rc5)
190
precise/esm_linux-mako: DNE
191
trusty_linux-mako: ignored (abandoned)
192
vivid/ubuntu-core_linux-mako: DNE
193
xenial_linux-mako: ignored (abandoned)
194
zesty_linux-mako: DNE
195
artful_linux-mako: DNE
196
bionic_linux-mako: DNE
197
devel_linux-mako: DNE
200
upstream_linux-manta: released (4.12~rc5)
201
precise/esm_linux-manta: DNE
202
trusty_linux-manta: ignored (abandoned)
203
vivid/ubuntu-core_linux-manta: DNE
204
xenial_linux-manta: DNE
205
zesty_linux-manta: DNE
206
artful_linux-manta: DNE
207
bionic_linux-manta: DNE
208
devel_linux-manta: DNE
211
upstream_linux-flo: released (4.12~rc5)
212
precise/esm_linux-flo: DNE
213
trusty_linux-flo: ignored (abandoned)
214
vivid/ubuntu-core_linux-flo: DNE
215
xenial_linux-flo: ignored (abandoned)
217
artful_linux-flo: DNE
218
bionic_linux-flo: DNE
221
Patches_linux-raspi2:
222
upstream_linux-raspi2: released (4.12~rc5)
223
precise/esm_linux-raspi2: DNE
224
trusty_linux-raspi2: DNE
225
vivid/ubuntu-core_linux-raspi2: ignored (end-of-life)
226
xenial_linux-raspi2: released (4.4.0-1065.73)
227
zesty_linux-raspi2: ignored (was pending [4.10.0-1024.27] now end-of-life)
228
artful_linux-raspi2: not-affected (4.13.0-1004.4)
229
bionic_linux-raspi2: not-affected (4.13.0-1005.5)
230
devel_linux-raspi2: not-affected (4.15.0-1010.11)
232
Patches_linux-lts-utopic:
233
upstream_linux-lts-utopic: released (4.12~rc5)
234
precise/esm_linux-lts-utopic: DNE
235
trusty_linux-lts-utopic: ignored (end-of-life)
236
vivid/ubuntu-core_linux-lts-utopic: DNE
237
xenial_linux-lts-utopic: DNE
238
zesty_linux-lts-utopic: DNE
239
artful_linux-lts-utopic: DNE
240
bionic_linux-lts-utopic: DNE
241
devel_linux-lts-utopic: DNE
243
Patches_linux-lts-vivid:
244
upstream_linux-lts-vivid: released (4.12~rc5)
245
precise/esm_linux-lts-vivid: DNE
246
trusty_linux-lts-vivid: ignored (was needs-triage now end-of-life)
247
vivid/ubuntu-core_linux-lts-vivid: DNE
248
xenial_linux-lts-vivid: DNE
249
zesty_linux-lts-vivid: DNE
250
artful_linux-lts-vivid: DNE
251
bionic_linux-lts-vivid: DNE
252
devel_linux-lts-vivid: DNE
254
Patches_linux-lts-wily:
255
upstream_linux-lts-wily: released (4.12~rc5)
256
precise/esm_linux-lts-wily: DNE
257
trusty_linux-lts-wily: ignored (end-of-life)
258
vivid/ubuntu-core_linux-lts-wily: DNE
259
xenial_linux-lts-wily: DNE
260
zesty_linux-lts-wily: DNE
261
artful_linux-lts-wily: DNE
262
bionic_linux-lts-wily: DNE
263
devel_linux-lts-wily: DNE
265
Patches_linux-krillin:
266
product_linux-krillin: ignored (was needed now end-of-life)
268
Patches_linux-vegetahd:
269
product_linux-vegetahd: ignored (was needed now end-of-life)
271
Patches_linux-lts-xenial:
272
upstream_linux-lts-xenial: released (4.12~rc5)
273
precise/esm_linux-lts-xenial: DNE
274
trusty_linux-lts-xenial: released (4.4.0-87.110~14.04.1)
275
vivid/ubuntu-core_linux-lts-xenial: DNE
276
xenial_linux-lts-xenial: DNE
277
zesty_linux-lts-xenial: DNE
278
artful_linux-lts-xenial: DNE
279
bionic_linux-lts-xenial: DNE
280
devel_linux-lts-xenial: DNE
282
Patches_linux-snapdragon:
283
upstream_linux-snapdragon: released (4.12~rc5)
284
precise/esm_linux-snapdragon: DNE
285
trusty_linux-snapdragon: DNE
286
vivid/ubuntu-core_linux-snapdragon: DNE
287
xenial_linux-snapdragon: released (4.4.0-1067.72)
288
zesty_linux-snapdragon: released (4.4.0-1067.72)
289
artful_linux-snapdragon: not-affected (4.4.0-1067.72)
290
bionic_linux-snapdragon: DNE
291
devel_linux-snapdragon: DNE
294
upstream_linux-aws: released (4.12~rc5)
295
precise/esm_linux-aws: DNE
296
trusty_linux-aws: not-affected (4.4.0-1002.2)
297
vivid/ubuntu-core_linux-aws: DNE
298
xenial_linux-aws: released (4.4.0-1026.35)
300
artful_linux-aws: DNE
301
bionic_linux-aws: not-affected (4.15.0-1001.1)
302
devel_linux-aws: not-affected (4.15.0-1007.7)
305
upstream_linux-hwe: released (4.12~rc5)
306
precise/esm_linux-hwe: DNE
307
trusty_linux-hwe: DNE
308
vivid/ubuntu-core_linux-hwe: DNE
309
xenial_linux-hwe: released (4.13.0-26.29~16.04.2)
311
artful_linux-hwe: DNE
312
bionic_linux-hwe: DNE
315
Patches_linux-hwe-edge:
316
upstream_linux-hwe-edge: released (4.12~rc5)
317
precise/esm_linux-hwe-edge: DNE
318
trusty_linux-hwe-edge: DNE
319
vivid/ubuntu-core_linux-hwe-edge: DNE
320
xenial_linux-hwe-edge: released (4.11.0-13.19~16.04.1)
321
zesty_linux-hwe-edge: DNE
322
artful_linux-hwe-edge: DNE
323
bionic_linux-hwe-edge: DNE
324
devel_linux-hwe-edge: DNE
327
upstream_linux-gke: released (4.12~rc5)
328
precise/esm_linux-gke: DNE
329
trusty_linux-gke: DNE
330
vivid/ubuntu-core_linux-gke: DNE
331
xenial_linux-gke: released (4.4.0-1022.22)
333
artful_linux-gke: DNE
334
bionic_linux-gke: DNE
338
upstream_linux-azure: released (4.12~rc5)
339
precise/esm_linux-azure: DNE
340
trusty_linux-azure: DNE
341
vivid/ubuntu-core_linux-azure: DNE
342
xenial_linux-azure: not-affected (4.11.0-1009.9)
343
zesty_linux-azure: DNE
344
artful_linux-azure: DNE
345
bionic_linux-azure: not-affected (4.15.0-1002.2)
346
devel_linux-azure: not-affected (4.15.0-1009.9)
349
upstream_linux-gcp: released (4.12~rc5)
350
precise/esm_linux-gcp: DNE
351
trusty_linux-gcp: DNE
352
vivid/ubuntu-core_linux-gcp: DNE
353
xenial_linux-gcp: released (4.13.0-1002.5)
355
artful_linux-gcp: DNE
356
bionic_linux-gcp: not-affected (4.15.0-1001.1)
357
devel_linux-gcp: not-affected (4.15.0-1006.6)
360
upstream_linux-kvm: released (4.12~rc5)
361
precise/esm_linux-kvm: DNE
362
trusty_linux-kvm: DNE
363
vivid/ubuntu-core_linux-kvm: DNE
364
xenial_linux-kvm: not-affected (4.4.0-1004.9)
366
artful_linux-kvm: DNE
367
bionic_linux-kvm: not-affected (4.15.0-1002.2)
368
devel_linux-kvm: not-affected (4.15.0-1008.8)
370
Patches_linux-euclid:
371
upstream_linux-euclid: released (4.12~rc5)
372
precise/esm_linux-euclid: DNE
373
trusty_linux-euclid: DNE
374
vivid/ubuntu-core_linux-euclid: DNE
375
xenial_linux-euclid: ignored (was needed ESM criteria)
376
zesty_linux-euclid: DNE
377
artful_linux-euclid: DNE
378
bionic_linux-euclid: DNE
379
devel_linux-euclid: DNE
382
upstream_linux-oem: released (4.12~rc5)
383
precise/esm_linux-oem: DNE
384
trusty_linux-oem: DNE
385
xenial_linux-oem: not-affected (4.13.0-1008.9)
387
artful_linux-oem: DNE
388
bionic_linux-oem: not-affected (4.15.0-1002.3)
389
devel_linux-oem: not-affected (4.15.0-1004.5)