CVE-2017-16994
CVE-2017-16994
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system call.
Productos afectados
n/a · n/aPoCs públicas encontradas — 5
githubgithub.com/jedai47/CVE-2017-16994★ 0cve_referencewww.exploit-db.com/exploits/43178/no verificadoexploitdbwww.exploit-db.com/exploits/44304no verificadoexploitdbwww.exploit-db.com/exploits/43178no verificadoexploitdbwww.exploit-db.com/exploits/44303no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=373c4557d2aa362702c4c2d41288fb1e54990b7chttps://access.redhat.com/errata/RHSA-2018:0502https://bugs.chromium.org/p/project-zero/issues/detail?id=1431https://github.com/torvalds/linux/commit/373c4557d2aa362702c4c2d41288fb1e54990b7chttps://usn.ubuntu.com/3617-1/https://usn.ubuntu.com/3617-2/https://usn.ubuntu.com/3617-3/https://usn.ubuntu.com/3619-1/https://usn.ubuntu.com/3619-2/https://usn.ubuntu.com/3632-1/https://www.exploit-db.com/exploits/43178/http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.2