{ "threat_severity" : "Important", "public_date" : "2017-12-05T05:43:00Z", "bugzilla" : { "description" : "kernel: Use-after-free vulnerability in DCCP socket", "id" : "1519591", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1519591" }, "cvss3" : { "cvss3_base_score" : "7.8", "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "status" : "verified" }, "cwe" : "CWE-416", "details" : [ "The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.", "A use-after-free vulnerability was found in DCCP socket code affecting the Linux kernel since 2.6.16. This vulnerability could allow an attacker to their escalate privileges." ], "statement" : "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7, Red Hat Enterprise MRG 2 and real-time kernels. Future updates for the respective releases may address this issue.\nThis issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 7 for ARM and Red Hat Enterprise Linux 7 for Power LE.", "acknowledgement" : "Red Hat would like to thank Mohamed Ghannam for reporting this issue.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 5 Extended Lifecycle Support", "release_date" : "2018-12-13T00:00:00Z", "advisory" : "RHSA-2018:3822", "cpe" : "cpe:/o:redhat:rhel_els:5", "package" : "kernel-0:2.6.18-436.el5" }, { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2018-05-08T00:00:00Z", "advisory" : "RHSA-2018:1319", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "kernel-0:2.6.32-696.28.1.el6" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2018-04-10T00:00:00Z", "advisory" : "RHSA-2018:0676", "cpe" : "cpe:/a:redhat:rhel_extras_rt:7", "package" : "kernel-rt-0:3.10.0-862.rt56.804.el7" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2018-04-10T00:00:00Z", "advisory" : "RHSA-2018:1062", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kernel-0:3.10.0-862.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Advanced Update Support", "release_date" : "2018-04-24T00:00:00Z", "advisory" : "RHSA-2018:1216", "cpe" : "cpe:/o:redhat:rhel_aus:7.2", "package" : "kernel-0:3.10.0-327.66.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Telco Extended Update Support", "release_date" : "2018-04-24T00:00:00Z", "advisory" : "RHSA-2018:1216", "cpe" : "cpe:/o:redhat:rhel_tus:7.2", "package" : "kernel-0:3.10.0-327.66.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions", "release_date" : "2018-04-24T00:00:00Z", "advisory" : "RHSA-2018:1216", "cpe" : "cpe:/o:redhat:rhel_e4s:7.2", "package" : "kernel-0:3.10.0-327.66.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.3 Extended Update Support", "release_date" : "2018-03-06T00:00:00Z", "advisory" : "RHSA-2018:0399", "cpe" : "cpe:/o:redhat:rhel_eus:7.3", "package" : "kernel-0:3.10.0-514.44.1.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Extended Update Support", "release_date" : "2018-04-17T00:00:00Z", "advisory" : "RHSA-2018:1130", "cpe" : "cpe:/o:redhat:rhel_eus:7.4", "package" : "kernel-0:3.10.0-693.25.2.el7" }, { "product_name" : "Red Hat Enterprise MRG 2", "release_date" : "2018-04-17T00:00:00Z", "advisory" : "RHSA-2018:1170", "cpe" : "cpe:/a:redhat:enterprise_mrg:2:server:el6", "package" : "kernel-rt-1:3.10.0-693.25.2.rt56.612.el6rt" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "kernel-alt", "cpe" : "cpe:/o:redhat:enterprise_linux:7" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2017-8824\nhttps://nvd.nist.gov/vuln/detail/CVE-2017-8824" ], "name" : "CVE-2017-8824", "csaw" : false }