| Summary: | Kernel: NULL pointer dereference in the Linux kernel through 4.13.3 (net/wireless/nl80211.c) | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | D'juan McDonald (domhnall) <flopwiki> |
| Component: | Kernel | Assignee: | Gentoo Kernel Security <security-kernel> |
| Status: | RESOLVED FIXED | ||
| Severity: | normal | CC: | security-kernel |
| Priority: | Normal | Keywords: | PATCH |
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1491046 | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
Fix in 4.9.53, 4.14 |
from ${URL}: CVE-2017-12153(https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12153): nl80211_set_rekey_data() does not check if the required attributes NL80211_REKEY_DATA_{REPLAY_CTR,KEK,KCK} are present when processing NL80211_CMD_SET_REKEY_OFFLOAD request. This request can be issued by users with CAP_NET_ADMIN privilege and may result in NULL dereference and a system crash. Add a check for the required attributes presence. upstream patch:commit e785fa0a164aa11001cba931367c7f94ffaff888