CVE-2017-1000253: Linux Kernel PIE Stack Buffer Corruption Vulnerability
First published: Fri Sep 15 2017(Updated: )
A flaw was found in the way the Linux kernel loaded ELF executables. Provided that an application was built as Position Independent Executable (PIE), the loader could allow part of that application's data segment to map over the memory area reserved for its stack, potentially resulting in memory corruption. An unprivileged local user with access to SUID (or otherwise privileged) PIE binary could use this flaw to escalate their privileges on the system. Upstream patch: <a href="https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86">https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86</a>
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Kernel-devel | ||
| CentOS | =6.0 | |
| CentOS | =6.1 | |
| CentOS | =6.2 | |
| CentOS | =6.3 | |
| CentOS | =6.4 | |
| CentOS | =6.5 | |
| CentOS | =6.6 | |
| CentOS | =6.7 | |
| CentOS | =6.8 | |
| CentOS | =6.9 | |
| CentOS | =7.1406 | |
| CentOS | =7.1503 | |
| CentOS | =7.1511 | |
| CentOS | =7.1611 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =6.1 | |
| Red Hat Enterprise Linux | =6.2 | |
| Red Hat Enterprise Linux | =6.3 | |
| Red Hat Enterprise Linux | =6.4 | |
| Red Hat Enterprise Linux | =6.5 | |
| Red Hat Enterprise Linux | =6.6 | |
| Red Hat Enterprise Linux | =6.7 | |
| Red Hat Enterprise Linux | =6.8 | |
| Red Hat Enterprise Linux | =6.9 | |
| Red Hat Enterprise Linux | =7.0 | |
| Red Hat Enterprise Linux | =7.1 | |
| Red Hat Enterprise Linux | =7.2 | |
| Red Hat Enterprise Linux | =7.3 | |
| Linux Kernel | >=2.6.25<3.2.70 | |
| Linux Kernel | >=3.3<3.4.109 | |
| Linux Kernel | >=3.5<3.10.77 | |
| Linux Kernel | >=3.11<3.12.43 | |
| Linux Kernel | >=3.13<3.14.41 | |
| Linux Kernel | >=3.15<3.16.35 | |
| Linux Kernel | >=3.17<3.18.14 | |
| Linux Kernel | >=3.19<3.19.7 | |
| Linux Kernel | >=4.0<4.0.2 |
Remedy
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86
- https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txt
- https://access.redhat.com/errata/RHSA-2017:2800
- https://access.redhat.com/errata/RHSA-2017:2799
- https://access.redhat.com/errata/RHSA-2017:2798
- https://access.redhat.com/errata/RHSA-2017:2797
- https://access.redhat.com/errata/RHSA-2017:2794
- https://access.redhat.com/errata/RHSA-2017:2793
- https://access.redhat.com/errata/RHSA-2017:2796
- https://access.redhat.com/errata/RHSA-2017:2801
- https://access.redhat.com/errata/RHSA-2017:2802
- https://access.redhat.com/errata/RHSA-2017:2795
- https://bugzilla.redhat.com/show_bug.cgi?id=1492212
- http://www.securityfocus.com/bid/101010
- http://www.securitytracker.com/id/1039434
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a87938b2e246b81b4fb713edb371a9fa3c5c3c86;
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000253
Frequently Asked Questions
What is the severity of CVE-2017-1000253?
CVE-2017-1000253 is classified as a high-severity vulnerability due to the potential for local privilege escalation.
How do I fix CVE-2017-1000253?
To fix CVE-2017-1000253, apply the latest kernel updates provided by your Linux distribution.
What systems are affected by CVE-2017-1000253?
CVE-2017-1000253 affects various versions of the Linux kernel, particularly those in CentOS 6.x and 7.x, as well as Red Hat Enterprise Linux 6.x and 7.x.
Can CVE-2017-1000253 be exploited remotely?
CVE-2017-1000253 requires local access to the system for exploitation, meaning it is not a remote vulnerability.
What is the impact of CVE-2017-1000253 on my applications?
CVE-2017-1000253 can allow attackers to gain elevated privileges, potentially compromising sensitive applications running on affected systems.
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-1000253
- agent/first-publish-date
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/title
- agent/remedy
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/last-modified-date
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- collector/nvd-cve
- collector/nvd-index
- vendor/linux
- canonical/red hat kernel-devel
- vendor/centos
- canonical/centos
- version/centos/6.0
- version/centos/6.1
- version/centos/6.2
- version/centos/6.3
- version/centos/6.4
- version/centos/6.5
- version/centos/6.6
- version/centos/6.7
- version/centos/6.8
- version/centos/6.9
- version/centos/7.1406
- version/centos/7.1503
- version/centos/7.1511
- version/centos/7.1611
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/6.1
- version/red hat enterprise linux/6.2
- version/red hat enterprise linux/6.3
- version/red hat enterprise linux/6.4
- version/red hat enterprise linux/6.5
- version/red hat enterprise linux/6.6
- version/red hat enterprise linux/6.7
- version/red hat enterprise linux/6.8
- version/red hat enterprise linux/6.9
- version/red hat enterprise linux/7.0
- version/red hat enterprise linux/7.1
- version/red hat enterprise linux/7.2
- version/red hat enterprise linux/7.3
- canonical/linux kernel
- version/linux kernel/2.6.25
- version/linux kernel/3.3
- version/linux kernel/3.5
- version/linux kernel/3.11
- version/linux kernel/3.13
- version/linux kernel/3.15
- version/linux kernel/3.17
- version/linux kernel/3.19
- version/linux kernel/4.0