CVE-2017-6074

ADVISORY - nist

Summary

The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call.

EPSS Score⁠: 0.18423 (0.950)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-415⁠

Double Free

ADVISORY - redhat

CWE-416⁠

Use After Free

Impacted images

Advisories

NIST

CREATED

9 years ago

UPDATED

7 months ago

ADVISORY IDCVE-2017-6074⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-415⁠

CVSS SCORE

7.8high

Debian

CREATED

9 years ago

UPDATED

1 month ago

ADVISORY IDCVE-2017-6074⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

9 years ago

UPDATED

2 months ago

ADVISORY IDCVE-2017-6074⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.8high

Amazon

CREATED

9 years ago

UPDATED

8 years ago

ADVISORY IDALAS-2017-805⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Red Hat

CREATED

9 years ago

UPDATED

8 months ago

ADVISORY IDCVE-2017-6074⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-416⁠

CVSS SCORE

7.8high

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-0293⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-0294⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-0294-1⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-0323⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-0323-1⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-3520⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-3521⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

9 years ago

UPDATED

9 years ago

ADVISORY IDELSA-2017-3522⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

4 years ago

UPDATED

4 years ago

ADVISORY IDELSA-2021-9486⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

4 years ago

UPDATED

4 years ago

ADVISORY IDELSA-2021-9487⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

intheWild

CREATED

8 months ago

UPDATED

8 months ago

ADVISORY IDCVE-2017-6074⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY