Integer Overflow Vulnerability in qla2x00_sysfs_write_optrom_ctl Function

Integer Overflow Vulnerability in qla2x00_sysfs_write_optrom_ctl Function

CVE-2017-14051 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.