CVE-2017-1000407

Published: Dec 11, 2017Modified: May 13, 2026

7.4

Vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 4.0

Source: NVD

Description

The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic.

Affected (17)

Products: Redhat: Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server Tus, Enterprise Linux Workstation, Virtualization Host · Linux: Linux Kernel · Debian: Debian Linux · +1 more

Show all products

Redhat: Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server Tus, Enterprise Linux Workstation, Virtualization Host · Linux: Linux Kernel · Debian: Debian Linux · Canonical: Ubuntu Linux

7 products

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Virtualization Host

1 product

1 product

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Workstation	Version 7.0
Redhat Virtualization Host	Version 4.0

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 2.6.32 to 4.15
Linux Linux Kernel	Version 4.15 rc1
Linux Linux Kernel	Version 4.15 rc2

Configuration C

3 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration D

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 17.10

Related CWEs

Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (34)

http://www.openwall.com/lists/oss-security/2017/12/04/2

Source: cve@mitre.org

Mailing ListPatchThird Party Advisory

http://www.securityfocus.com/bid/102038

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:0676

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1062

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1170

Source: cve@mitre.org

https://access.redhat.com/security/cve/cve-2017-1000407

Source: cve@mitre.org

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3583-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3583-2/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3617-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3617-2/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3619-1/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3619-2/

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3632-1/

Source: cve@mitre.org

Third Party Advisory

https://www.debian.org/security/2017/dsa-4073

Source: cve@mitre.org

Third Party Advisory

https://www.debian.org/security/2018/dsa-4082

Source: cve@mitre.org

Third Party Advisory

https://www.spinics.net/lists/kvm/msg159809.html

Source: cve@mitre.org

Patch

http://www.openwall.com/lists/oss-security/2017/12/04/2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatchThird Party Advisory

http://www.securityfocus.com/bid/102038

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:0676

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1062

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1170

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/security/cve/cve-2017-1000407

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3583-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3583-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3617-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3617-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3619-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3619-2/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3632-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2017/dsa-4073

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2018/dsa-4082

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.spinics.net/lists/kvm/msg159809.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.