Red Hat update for Linux Kernel

1) Security restrictions bypass

EUVDB-ID: #VU7238

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-7895

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The weakness exists due to boundary error when handling a user-supplied input. A remote attacker can send a specially crafted request, trigger pointer-arithmetic errors or possibly have unspecified other impact related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

Successful exploitation of the vulnerability results in access to the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Red Hat Enterprise Linux Server - AUS: 5.9

kernel (Red Hat package): 2.6.18-8.1.1.el5 - 2.6.18-348.33.2.el5

CPE2.3

• cpe:2.3:o:red_hat:red_hat_enterprise_linux_server_-_aus:5.9:*:*:*:*:red_hat_enterprise_linux:*:*
• cpe:2.3:o:red_hat:kernel_redhat_package:2.6.18-8.1.1.el5:*:*:*:*:red_hat_enterprise_linux:*:*
• cpe:2.3:o:red_hat:kernel_redhat_package:2.6.18-8.1.3.el5:*:*:*:*:red_hat_enterprise_linux:*:*
• cpe:2.3:o:red_hat:kernel_redhat_package:2.6.18-8.1.4.el5:*:*:*:*:red_hat_enterprise_linux:*:*

External links

https://access.redhat.com/errata/RHSA-2017:2472

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.