漏洞类别:Amazon Linux
漏洞等级: 
漏洞信息
Buffer overflow in mp_override_legacy_irq():
Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local users to gain privileges via a crafted ACPI table. (CVE-2017-11473 )
A race between inotify_handle_event() and sys_rename():
A race condition was found in the Linux kernel, present since v3.14-rc1 through v4.12. The race happens between threads of inotify_handle_event() and vfs_rename() while running the rename operation against the same file. As a result of the race the next slab data or the slab's free list pointer can be corrupted with attacker-controlled data, which may lead to the privilege escalation. (CVE-2017-7533 )
Integer overflow in ip6_find_1stfragopt() causes infinite loop:
An integer overflow vulnerability in ip6_find_1stfragopt() function was found. A local attacker that has privileges (of CAP_NET_RAW) to open raw socket can cause an infinite loop inside the ip6_find_1stfragopt() function.(CVE-2017-7542 )
QID Detection Logic:
This authenticated QID verifies if the version of the following files is lesser than 4.9.43-17.38.amzn1: kernel-headers, perf, kernel, kernel-debuginfo, kernel-tools-debuginfo, kernel-debuginfo-common-x86_64, kernel-tools, perf-debuginfo, kernel-devel, kernel-tools-devel, kernel-doc, kernel-debuginfo-common-i686
漏洞危害
Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service.
解决方案
Please refer to Amazon advisory ALAS-2017-870 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
ALAS-2017-870: Amazon Linux (kernel (4.9.43-17.38.amzn1) on noarch)
ALAS-2017-870: Amazon Linux (kernel (4.9.43-17.38.amzn1) on x86_64)
ALAS-2017-870: Amazon Linux (kernel (4.9.43-17.38.amzn1) on src)
ALAS-2017-870: Amazon Linux (kernel (4.9.43-17.38.amzn1) on i686)
0daybank
文章评论