CVE-2017-7645

Published: Apr 18, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://marc.info/?l=linux-nfs&m=149247516212924&w=2

x_refsource_MISC

RHSA-2017:1615

vendor-advisory

x_refsource_REDHAT

USN-3754-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2017:1647

vendor-advisory

x_refsource_REDHAT

RHSA-2017:1616

vendor-advisory

x_refsource_REDHAT

RHSA-2018:1319

vendor-advisory

x_refsource_REDHAT

https://github.com/torvalds/linux/commit/e6838a29ecb484c97e4efef9429643b9851fba6e

x_refsource_CONFIRM

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

x_refsource_CONFIRM

97950

vdb-entry

x_refsource_BID

https://marc.info/?l=linux-nfs&m=149218228327497&w=2

x_refsource_MISC

DSA-3886

vendor-advisory

x_refsource_DEBIAN

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e6838a29ecb484c97e4efef9429643b9851fba6e

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-7645

Description

Affected Products

References