CVE-2017-9150

Updated: 2023-12-06

CWE: Information Leak / Disclosure

Description:

The do_check function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allow_ptr_leaks value available for restricting the output of the print_bpf_insn function, which allows local users to obtain sensitive address information via crafted bpf system calls.

CVSS3: 5.5

Vendor State

OS	Vendor version	Errata
Ubuntu 16.04	4.4.0-87.110	USN-3364-1
Ubuntu 16.04 AWS	4.4.0-1026.35	USN-3364-3
Ubuntu 14.04 HWE	4.4.0-87.110~14.04.1	USN-3364-2
Ubuntu 16.04 (FIPS)	4.4.0-87.110	usn-3364-1

KernelCare State

OS	Original kernel version	State
Ubuntu 16.04	4.4.0-83.106 show all hide all 4.4.0-72.93 4.4.0-79.100 4.4.0-64.85 4.4.0-34.53 4.4.0-22.40 4.4.0-78.99 4.4.0-31.50 4.4.0-62.83 4.4.0-28.47 4.4.0-63.84 4.4.0-24.43 4.4.0-38.57 4.4.0-47.68 4.4.0-67.88 4.4.0-81.104 4.4.0-22.39 4.4.0-42.62 4.4.0-51.72 4.4.0-75.96 4.4.0-53.74 4.4.0-36.55 4.4.0-21.37 4.4.0-23.41 4.4.0-43.63 4.4.0-65.86 4.4.0-70.91 4.4.0-77.98 4.4.0-45.66 4.4.0-66.87 4.4.0-71.92 4.4.0-57.78 4.4.0-59.80	Released
Ubuntu 16.04 AWS	4.4.0-1020.29 show all hide all 4.4.0-1012.21 4.4.0-1017.26 4.4.0-1016.25 4.4.0-1013.22 4.4.0-1022.31 4.4.0-1018.27	Released
Ubuntu 14.04 HWE	4.4.0-71.92~14.04.1 show all hide all 4.4.0-34.53~14.04.1 4.4.0-51.72~14.04.1 4.4.0-79.100~14.04.1 4.4.0-63.84~14.04.2 4.4.0-81.104~14.04.1 4.4.0-66.87~14.04.1 4.4.0-53.74~14.04.1 4.4.0-28.47~14.04.1 4.4.0-57.78~14.04.1 4.4.0-62.83~14.04.1 4.4.0-78.99~14.04.2 4.4.0-64.85~14.04.1 4.4.0-24.43~14.04.1 4.4.0-47.68~14.04.1 4.4.0-31.50~14.04.1 4.4.0-83.106~14.04.1 4.4.0-42.62~14.04.1 4.4.0-38.57~14.04.1 4.4.0-72.93~14.04.1 4.4.0-22.40~14.04.1 4.4.0-21.37~14.04.1 4.4.0-23.41~14.04.1 4.4.0-65.86~14.04.1 4.4.0-70.91~14.04.1 4.4.0-75.96~14.04.1 4.4.0-36.55~14.04.1 4.4.0-59.80~14.04.1 4.4.0-67.88~14.04.1 4.4.0-45.66~14.04.1 4.4.0-22.39~14.04.1	Released
Endurance 6 elrepo		Ready For Release
Debian 10 cloud		Will Not Fix
Debian 9 backports		Will Not Fix
Ubuntu 16.04 (FIPS)	4.4.0-1002.2	Released