http://bugzilla.opensuse.org/show_bug.cgi?id=1039883 Bug ID: 1039883 Summary: VUL-0: CVE-2017-9075: denial of service or possibly have unspecified other impact via crafted system calls (sctp_v6_create_accept_sk function in net/sctp/ipv6.c) Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mikhail.kasimov@gmail.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Ref: https://nvd.nist.gov/vuln/detail/CVE-2017-9075 =================================================== The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. =================================================== Hyperlink [1] http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fd... [2] https://github.com/torvalds/linux/commit/fdcee2cbb8438702ea1b328fb6e0ac5e9a4... [3] https://patchwork.ozlabs.org/patch/763569/ [4] https://security-tracker.debian.org/tracker/CVE-2017-9075 -- You are receiving this mail because: You are on the CC list for the bug.