CVE-2017-6074 DCCP vulnerability
Bug #1667046 reported by
dino99
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
CVE-2017-6074 was made public today as a DCCP double-free vulnerability that could allow for kernel code execution from an unprivileged process.
This local root vulnerability is present in Linux kernel releases going back at least to 2006 but potentially to 2005 when the code was first introduced. It affects kernel builds with CONFIG_IP_DCCP.
Fixed upstream
https:/
CVE References
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
information type: | Private Security → Public |
tags: | added: precise xenial yakkety zesty |
To post a comment you must log in.
We published updates for the issue already:
https:/ /www.ubuntu. com/usn/