BSA-2017-234
21488
08 September 2017
31 March 2017
Closed
High
7.0
N/A
CVE-2016-8655
Summary
Security Advisory ID : BSA-2017-234
Component : Linux Kernel
Revision : 2.0: Interim
Race condition in net/packet/af_packet.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging the CAP_NET_RAW capability to change a socket version, related to the packet_set_ring and packet_setsockopt functions.
Affected Products
Product | Current Assessment |
---|---|
Brocade 5400 vRouter | Impacted: Fixed in 6.7R13. |
Brocade 5600 vRouter | Impacted: Fixed in 17.2.0 and 5.2R4. |
Brocade Virtual Traffic Manager | Impacted: Appliance fixed in 17.1 and later. |
Products Confirmed Not Vulnerable
Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network Advisor, Brocade Network OS, Brocade SDN Controller, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, Brocade Virtual Traffic Manager: Software, and Brocade Virtual Web Application Firewall are confirmed not affected by this vulnerability.
Workaround
There are no workarounds that address this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | August 25, 2017 |
2.0 | Updated to address FOS and NOS | September 8, 2017 |