BSA-2017-234
21488
08 September 2017
31 March 2017
Closed
High
7.0
N/A
CVE-2016-8655
Summary
Security Advisory ID : BSA-2017-234
Component : Linux Kernel
Revision : 2.0: Interim
Race condition in net/packet/af_packet.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging the CAP_NET_RAW capability to change a socket version, related to the packet_set_ring and packet_setsockopt functions.
Affected Products
| Product | Current Assessment |
|---|---|
| Brocade 5400 vRouter | Impacted: Fixed in 6.7R13. |
| Brocade 5600 vRouter | Impacted: Fixed in 17.2.0 and 5.2R4. |
| Brocade Virtual Traffic Manager | Impacted: Appliance fixed in 17.1 and later. |
Products Confirmed Not Vulnerable
Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network Advisor, Brocade Network OS, Brocade SDN Controller, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, Brocade Virtual Traffic Manager: Software, and Brocade Virtual Web Application Firewall are confirmed not affected by this vulnerability.
Workaround
There are no workarounds that address this vulnerability.
Revision History
| Version | Change | Date |
|---|---|---|
| 1.0 | Initial Publication | August 25, 2017 |
| 2.0 | Updated to address FOS and NOS | September 8, 2017 |