CVE-2017-7346
Summary
| CVE | CVE-2017-7346 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2017-03-30 23:59:00 UTC |
|---|
| Updated | 2017-11-04 01:29:00 UTC |
|---|
| Description | The vmw_gb_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service (system hang) via a crafted ioctl call for a /dev/dri/renderD* device. |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Operating System |
Linux |
Linux Kernel |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| 1437431 – (CVE-2017-7346) CVE-2017-7346 kernel: drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl() |
CONFIRM |
bugzilla.redhat.com |
Issue Tracking, Patch |
| Debian -- Security Information -- DSA-3945-1 linux |
DEBIAN |
www.debian.org |
|
| [PATCH] kernel: drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl() |
CONFIRM |
lists.freedesktop.org |
Patch, Third Party Advisory |
| Linux Kernel CVE-2017-7346 Local Denial of Service Vulnerability |
BID |
www.securityfocus.com |
Third Party Advisory, VDB Entry |
| '[PATCH] kernel: drm/vmwgfx: limit the number of mip levels in vmw_gb_surface_define_ioctl()' - MARC |
CONFIRM |
marc.info |
Patch, Third Party Advisory |
| Debian -- Security Information -- DSA-3927-1 linux |
DEBIAN |
www.debian.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 670634 EulerOS Security Update for kernel (EulerOS-SA-2021-2392)
