search

witchcraze / NVD_CHECK

1 stars 0 forks source link

CHK NVD : CVE-2017-18017 - ac35572e #2007

Closed witchcraze closed 1 year ago

witchcraze commented 1 year ago

[CVE Configuration Update Request] Update Suggestion - CVE-2017-18017 - Cvss2 : 10 [CVE Configuration Update Request] Update Suggestion - CVE-2017-18017 - Cvss3 : 9.8

https://www.linuxkernelcves.com/cves/CVE-2017-18017 https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec/-/blob/master/issues/CVE-2017-18017.yml https://github.com/witchcraze/NVD_CHECK/blob/main/kernel/CVE-2017-18017.json

- CVE-2017-18017
- Suggested Configuration
  - OR
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.10.0 up to (excluding) 3.10.108
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.16.0 up to (excluding) 3.16.54
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.18.0 up to (excluding) 3.18.60
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.2.0 up to (excluding) 3.2.99
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.1.0 up to (excluding) 4.1.43
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.4.0 up to (excluding) 4.4.76
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.9.0 up to (excluding) 4.9.36
- Reference
  - https://github.com/torvalds/linux/commit/2638fd0f92d4397884fd991d8f4925cb3f081901
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.10.108
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.16.54
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.18.60
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.2.99
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.1.43
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.4.76
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.9.36
- Reference (Commit)
  - netfilter: xt_TCPMSS: add more sanity tests on tcph->doff
    - Fixed by
      - - (2638fd0f92d4397884fd991d8f4925cb3f081901) (upstream)
      - 3.10.108 (72d7b83afbc4659de5948c4cc33f5d7b47f09aa4)
      - 3.16.54 (d2e769238e6079e1e16c856cc352b0061a111f1d)
      - 3.18.60 (f4549a698a531c0014c62e40e521ffa030cf31e0)
      - 3.2.99 (d84eeff84e9869d29f442ff652ce1352cfa63e84)
      - 4.1.43 (a7776b8815a90da464f045f7c24d9565ae9f1963)
      - 4.4.76 (234e649840d191379cd132d89f4b01a2495cfcc3)
      - 4.9.36 (ced7689be60ddcac4b1746212c547e8817c5ae5e)
    - Will be introduced by
- I Checked
  - XXXXXXXXXXXXXXXXXXXXXXXXXXXX is written as upstream commit in each ChangeLog
  - From XXXXXXXX commit page, XXXXXXXXXXX is the most oldest in commit-branches area
  - For 3.16.35, there is related post at lkml
  - For 3.16 series, 3.16.35 is the next release from 3.16.7 which was released at 2024
  - https://mirrors.edge.kernel.org/pub/linux/kernel/v3.x/
  - XXXX
https://nvd.nist.gov/vuln/detail/CVE-2017-18017 URI Start(Ex) Start(Inc) End(Ex) End(Inc)
cpe:/o:suse:linux_enterprise_workstation_extension:12:sp3
cpe:/o:suse:linux_enterprise_workstation_extension:12:sp2
cpe:/o:suse:linux_enterprise_software_development_kit:12:sp3
cpe:/o:suse:linux_enterprise_software_development_kit:12:sp2
cpe:/o:suse:linux_enterprise_software_development_kit:11:sp4
cpe:/o:suse:linux_enterprise_server:12:sp3:-~-
cpe:/o:suse:linux_enterprise_server:12:sp2:~~~~raspberry_pi~
cpe:/o:suse:linux_enterprise_server:12:sp2
cpe:/o:suse:linux_enterprise_server:12:sp1:~sap
cpe:/o:suse:linux_enterprise_server:12:sp1:ltss~
cpe:/o:suse:linux_enterprise_server:12::ltss~
cpe:/o:suse:linux_enterprise_server:11:sp4
cpe:/o:suse:linux_enterprise_server:11:sp3:ltss~
cpe:/o:suse:linux_enterprise_real_time_extension:12:sp3
cpe:/o:suse:linux_enterprise_real_time_extension:12:sp2
cpe:/o:suse:linux_enterprise_real_time_extension:11:sp4
cpe:/o:suse:linux_enterprise_live_patching:12:sp3
cpe:/o:suse:linux_enterprise_live_patching:12:-
cpe:/o:suse:linux_enterprise_high_availability_extension:11:sp4
cpe:/o:suse:linux_enterprise_high_availability:12:sp3
cpe:/o:suse:linux_enterprise_high_availability:12:sp2
cpe:/o:suse:linux_enterprise_desktop:12:sp3
cpe:/o:suse:linux_enterprise_desktop:12:sp2
cpe:/o:redhat:enterprise_linux_workstation:7.0
cpe:/o:redhat:enterprise_linux_workstation:6.0
cpe:/o:redhat:enterprise_linux_server_tus:7.7
cpe:/o:redhat:enterprise_linux_server_tus:7.6
cpe:/o:redhat:enterprise_linux_server_tus:7.4
cpe:/o:redhat:enterprise_linux_server_tus:7.3
cpe:/o:redhat:enterprise_linux_server_aus:7.7
cpe:/o:redhat:enterprise_linux_server_aus:7.6
cpe:/o:redhat:enterprise_linux_server_aus:7.4
cpe:/o:redhat:enterprise_linux_server_aus:7.3
cpe:/o:redhat:enterprise_linux_server:7.0
cpe:/o:redhat:enterprise_linux_server:6.0
cpe:/o:redhat:enterprise_linux_for_real_time_for_nfv:7
cpe:/o:redhat:enterprise_linux_for_real_time:7
cpe:/o:redhat:enterprise_linux_eus:7.7
cpe:/o:redhat:enterprise_linux_eus:7.6
cpe:/o:redhat:enterprise_linux_eus:7.4
cpe:/o:redhat:enterprise_linux_eus:7.3
cpe:/o:redhat:enterprise_linux_desktop:7.0
cpe:/o:redhat:enterprise_linux_desktop:6.0
cpe:/o:opensuse:leap:42.3
cpe:/o:linux:linux_kernel 4.10 4.11
cpe:/o:linux:linux_kernel 4.9 4.9.36
cpe:/o:debian:debian_linux:8.0
cpe:/o:debian:debian_linux:7.0
cpe:/o:canonical:ubuntu_linux:14.04::esm~
cpe:/o:canonical:ubuntu_linux:12.04::-~
cpe:/o:arista:eos
cpe:/a:suse:openstack_cloud:6
cpe:/a:suse:linux_enterprise_point_of_sale:11:sp3
cpe:/a:suse:linux_enterprise_module_for_public_cloud:12
cpe:/a:suse:linux_enterprise_debuginfo:11:sp4
cpe:/a:suse:linux_enterprise_debuginfo:11:sp3
cpe:/a:suse:caas_platform
cpe:/a:redhat:mrg_realtime:2.0
cpe:/a:openstack:cloud_magnum_orchestration:7
cpe:/a:f5:arx 6.2.0 6.4.0
witchcraze commented 1 year ago 
- CVE-2017-18017
- Suggested Configuration (ADD backports before 4.9)
  - OR
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.2.0 up to (excluding) 3.2.99
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.3.0 up to (excluding) 3.10.108
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.11.0 up to (excluding) 3.16.54
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.17.0 up to (excluding) 3.18.60
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 3.19.0 up to (excluding) 4.1.43
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.2.0 up to (excluding) 4.4.76
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.5.0 up to (excluding) 4.9.36
     *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.10.0 up to (excluding) 4.11
- Reference
  - https://github.com/torvalds/linux/commit/2638fd0f92d4397884fd991d8f4925cb3f081901 (4.11-rc7)
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.2.99
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.10.108
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.16.54
  - https://www.kernel.org/pub//linux/kernel/v3.x/ChangeLog-3.18.60
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.1.43
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.4.76
  - https://www.kernel.org/pub//linux/kernel/v4.x/ChangeLog-4.9.36
- Reference (Commit)
  - netfilter: xt_TCPMSS: add more sanity tests on tcph->doff
    - Fixed by
      - (2638fd0f92d4397884fd991d8f4925cb3f081901) (upstream)
      - 3.10.108 (72d7b83afbc4659de5948c4cc33f5d7b47f09aa4)
      - 3.16.54 (d2e769238e6079e1e16c856cc352b0061a111f1d)
      - 3.18.60 (f4549a698a531c0014c62e40e521ffa030cf31e0)
      - 3.2.99 (d84eeff84e9869d29f442ff652ce1352cfa63e84)
      - 4.1.43 (a7776b8815a90da464f045f7c24d9565ae9f1963)
      - 4.4.76 (234e649840d191379cd132d89f4b01a2495cfcc3)
      - 4.9.36 (ced7689be60ddcac4b1746212c547e8817c5ae5e)
- I Checked
  - 2638fd0f92d4397884fd991d8f4925cb3f081901 is written as upstream commit in each ChangeLog
  - From 2638fd0f92d4397884fd991d8f4925cb3f081901 commit page, 4.11-rc7 is the most oldest in commit-branches area