Buffer Overflow and Memory Corruption Vulnerability in Linux Kernel's tpacket_rcv Function

Buffer Overflow and Memory Corruption Vulnerability in Linux Kernel's tpacket_rcv Function

CVE-2017-14497 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The tpacket_rcv function in net/packet/af_packet.c in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service (buffer overflow, and disk and memory corruption) or possibly have unspecified other impact via crafted system calls.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.