Improper Pointer Use in Linux Kernel's BPF Verifier Leads to Memory Corruption

Improper Pointer Use in Linux Kernel's BPF Verifier Leads to Memory Corruption

CVE-2017-17855 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.