Updated: 2023-12-06
CWE: Race Conditions
Description:
Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application that leverages simultaneous execution of the inotify_handle_event and vfs_rename functions.
CVSS3: 7
| OS | Vendor version | Errata |
|---|---|---|
| RHEL 7 | 3.10.0-693.1.1.el7 | RHSA-2017:2473 |
| Ubuntu 16.04 | 4.4.0-89.112 | USN-3378-1 |
| Ubuntu 16.04 AWS | 4.4.0-1028.37 | USN-3378-1 |
| Ubuntu 14.04 HWE | 4.4.0-89.112~14.04.1 | USN-3378-2 |
| Debian 9 | 4.9.30-2+deb9u3 | DSA-3927-1 |
| Debian 8 | 3.16.43-2+deb8u3 | DSA-3945-1 |
| Debian 8 backports | 4.9.30-2+deb9u3 | DSA-3927-1 |
| CentOS 7 | 3.10.0-693.1.1.el7 | CESA-2017:2473 |
| CentOS 7 plus | 3.10.0-693.1.1.el7.centos.plus | CESA-2017:2473 |
| Oracle Linux 7 | 3.10.0-693.1.1.0.1.el7 | ELSA-2017-2473-1 |
| Oracle Linux 6 UEK 4 | 4.1.12-94.5.9.el6uek | ELSA-2017-3605 |
| Oracle Linux 7 UEK 4 | 4.1.12-94.5.9.el7uek | ELSA-2017-3605 |
| Ubuntu 16.04 (FIPS) | 4.4.0-89.112 | usn-3378-1 |
| OS | Original kernel version | State |
|---|---|---|
| RHEL 7 |
3.10.0-514.6.1.el7
show all
hide all
3.10.0-693.el7
3.10.0-514.21.2.el7
3.10.0-514.21.1.el7
3.10.0-327.36.3.el7
3.10.0-327.36.2.el7
3.10.0-514.10.2.el7
3.10.0-514.26.1.el7
3.10.0-327.36.1.el7
3.10.0-514.2.2.el7
3.10.0-514.26.2.el7
3.10.0-514.el7
3.10.0-514.16.1.el7
3.10.0-514.6.2.el7
|
Released |
| Ubuntu 16.04 |
4.4.0-21.37
show all
hide all
4.4.0-23.41
4.4.0-43.63
4.4.0-65.86
4.4.0-70.91
4.4.0-77.98
4.4.0-83.106
4.4.0-72.93
4.4.0-64.85
4.4.0-22.40
4.4.0-78.99
4.4.0-31.50
4.4.0-62.83
4.4.0-28.47
4.4.0-63.84
4.4.0-24.43
4.4.0-38.57
4.4.0-47.68
4.4.0-67.88
4.4.0-81.104
4.4.0-22.39
4.4.0-42.62
4.4.0-75.96
4.4.0-51.72
4.4.0-87.110
4.4.0-53.74
4.4.0-36.55
4.4.0-66.87
4.4.0-45.66
4.4.0-71.92
4.4.0-57.78
4.4.0-59.80
4.4.0-79.100
4.4.0-34.53
|
Released |
| Ubuntu 16.04 AWS |
4.4.0-1020.29
show all
hide all
4.4.0-1026.35
4.4.0-1012.21
4.4.0-1016.25
4.4.0-1017.26
4.4.0-1013.22
4.4.0-1022.31
4.4.0-1018.27
|
Released |
| Ubuntu 14.04 HWE |
4.4.0-71.92~14.04.1
show all
hide all
4.4.0-34.53~14.04.1
4.4.0-51.72~14.04.1
4.4.0-79.100~14.04.1
4.4.0-63.84~14.04.2
4.4.0-81.104~14.04.1
4.4.0-66.87~14.04.1
4.4.0-53.74~14.04.1
4.4.0-28.47~14.04.1
4.4.0-57.78~14.04.1
4.4.0-78.99~14.04.2
4.4.0-62.83~14.04.1
4.4.0-64.85~14.04.1
4.4.0-24.43~14.04.1
4.4.0-47.68~14.04.1
4.4.0-83.106~14.04.1
4.4.0-31.50~14.04.1
4.4.0-42.62~14.04.1
4.4.0-38.57~14.04.1
4.4.0-22.40~14.04.1
4.4.0-72.93~14.04.1
4.4.0-21.37~14.04.1
4.4.0-23.41~14.04.1
4.4.0-65.86~14.04.1
4.4.0-70.91~14.04.1
4.4.0-75.96~14.04.1
4.4.0-87.110~14.04.1
4.4.0-36.55~14.04.1
4.4.0-59.80~14.04.1
4.4.0-67.88~14.04.1
4.4.0-45.66~14.04.1
4.4.0-22.39~14.04.1
|
Released |
| Debian 9 |
4.9.30-2+deb9u1
show all
hide all
4.9.30-2+deb9u2
4.9.30-2
|
Released |
| Debian 8 |
3.16.7-ckt9-3~deb8u1
show all
hide all
3.16.39-1+deb8u2
3.16.7-ckt11-1+deb8u2
3.16.7-ckt20-1+deb8u2
3.16.7-ckt11-1+deb8u3
3.16.7-ckt20-1+deb8u4
3.16.7-ckt25-2+deb8u2
3.16.36-1+deb8u2
3.16.7-ckt25-1
3.16.7-ckt11-1+deb8u4
3.16.7-ckt25-2
3.16.7-ckt11-1+deb8u5
3.16.7-ckt20-1+deb8u3
3.16.39-1
3.16.43-2+deb8u1
3.16.7-ckt11-1+deb8u6
3.16.43-2+deb8u2
3.16.43-2
3.16.7-ckt11-1+deb8u1
3.16.7-ckt25-2+deb8u1
3.16.39-1+deb8u1
3.16.7-ckt25-2+deb8u3
3.16.36-1+deb8u1
3.16.7-ckt11-1
3.16.7-ckt20-1+deb8u1
|
Released |
| Debian 8 backports |
4.9.30-2+deb9u2~bpo8+1
show all
hide all
4.9.30-2~bpo8+1
|
Released |
| CentOS 7 |
3.10.0-327.36.3.el7
show all
hide all
3.10.0-327.36.2.el7
3.10.0-514.10.2.el7
3.10.0-514.21.2.el7
3.10.0-514.6.2.el7
3.10.0-514.16.1.el7
3.10.0-514.21.1.el7
3.10.0-514.6.1.el7
3.10.0-514.2.2.el7
3.10.0-514.26.2.el7
3.10.0-693.el7
3.10.0-327.36.1.el7
3.10.0-514.26.1.el7
3.10.0-514.el7
|
Released |
| CentOS 7 plus |
3.10.0-327.36.3.el7.centos.plus
show all
hide all
3.10.0-514.10.2.el7.centos.plus
3.10.0-693.el7.centos.plus
3.10.0-327.36.2.el7.centos.plus
3.10.0-514.el7.centos.plus
3.10.0-514.6.1.el7.centos.plus
3.10.0-514.16.1.el7.centos.plus
3.10.0-514.2.2.el7.centos.plus
3.10.0-514.26.2.el7.centos.plus
3.10.0-514.21.2.el7.centos.plus
3.10.0-327.36.1.el7.centos.plus
3.10.0-514.21.1.el7.centos.plus
3.10.0-514.6.2.el7.centos.plus
|
Released |
| Oracle Linux 7 |
3.10.0-514.10.2.el7
show all
hide all
3.10.0-514.16.1.el7
3.10.0-514.26.1.el7
3.10.0-514.26.2.el7
3.10.0-514.6.2.el7
3.10.0-693.el7
3.10.0-327.36.3.el7
3.10.0-327.36.2.el7
3.10.0-514.el7
3.10.0-514.6.1.el7
3.10.0-327.36.1.el7
3.10.0-514.2.2.el7
3.10.0-514.21.1.el7
3.10.0-514.21.2.el7
|
Released |
| Oracle Linux 6 UEK 4 |
4.1.12-94.3.5.el6uek
show all
hide all
4.1.12-61.47.1.el6uek
|
Released |
| Oracle Linux 7 UEK 4 |
4.1.12-94.3.5.el7uek
|
Released |
| CloudLinux OS 7 |
3.10.0-427.36.1.lve1.4.40.el7
show all
hide all
3.10.0-427.36.1.lve1.4.39.el7
3.10.0-614.10.2.lve1.4.50.el7
3.10.0-427.36.1.lve1.4.44.el7
3.10.0-427.36.1.lve1.4.37.el7
3.10.0-427.36.1.lve1.4.45.el7
3.10.0-427.36.1.lve1.4.47.el7
3.10.0-614.10.2.lve1.4.55.el7
3.10.0-614.10.2.lve1.4.56.el7
3.10.0-427.36.1.lve1.4.43.el7
|
Released |
| CloudLinux OS 6h |
3.10.0-427.36.1.lve1.4.45.el6h
show all
hide all
3.10.0-427.36.1.lve1.4.37.el6h
3.10.0-427.36.1.lve1.4.39.el6h
3.10.0-427.36.1.lve1.4.40.el6h
3.10.0-427.36.1.lve1.4.43.el6h
3.10.0-427.36.1.lve1.4.44.el6h
3.10.0-427.36.1.lve1.4.47.el6h
3.10.0-614.10.2.lve1.4.50.el6h
3.10.0-614.10.2.lve1.4.55.el6h
3.10.0-614.10.2.lve1.4.56.el6h
|
Released |
| Endurance 6 elrepo | |
Ready For Release |
| OEL 7 Dell | |
Ready For Release |
| Endurance 7 eig 3.10 | |
Ready For Release |
| Debian 10 cloud | |
Will Not Fix |
| Debian 9 backports | |
Will Not Fix |
| Ubuntu 16.04 (FIPS) |
4.4.0-1002.2
|
Released |