Support Content Notification - Support Portal

BSA-2017-204

Product/Component

Brocade Fabric OS

2 more products

Notification Id

21537

Last Updated

31 March 2017

Initial Publication Date

31 March 2017

Status

Closed

Severity

Medium

CVSS Base Score

5.5

WorkAround

N/A

Affected CVE

CVE-2016-3961

Summary
Security Advisory ID : BSA-2017-204
Component : Linux Kernel
Revision : 1.0: Interim

Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfsmapped area.

Affected Products

Product	Current Assessment
Brocade Virtual Traffic Manager	Impacted: Appliance fixed in 17.1, 10.4r1, 9.9r2, and later.

Products Confirmed Not Vulnerable

Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network Advisory, Brocade Network OS, Brocade SDN Controller, Brocade ServerIron ADX, Brocade Services Director, Brocade SLX-OS, Brocade Virtual ADX, Brocade Virtual Traffic Manager: Software, and Brocade Virtual Web Application Firewall are confirmed not affected by this vulnerability.

Workaround

There are no workarounds that address this vulnerability.

Revision History

Version	Change	Date
1.0	Initial Publication	March 31, 2017

Summary Security Advisory ID : BSA-2017-204 Component : Linux Kernel Revision : 1.0: Interim

Revision History

Summary
Security Advisory ID : BSA-2017-204
Component : Linux Kernel
Revision : 1.0: Interim