Medium severity4.4NVD Advisory· Published Sep 21, 2017· Updated May 13, 2026

CVE-2017-12153

Description

A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/oss-sec/2017/q3/437nvdMailing ListPatchThird Party Advisory
bugzilla.novell.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
git.kernel.org/pub/scm/linux/kernel/git/jberg/mac80211.git/commit/nvdIssue TrackingPatchThird Party Advisory
marc.infonvdPatchThird Party Advisory
www.debian.org/security/2017/dsa-3981nvdThird Party Advisory
www.securityfocus.com/bid/100855nvdThird Party AdvisoryVDB Entry
usn.ubuntu.com/3583-1/nvdThird Party Advisory
usn.ubuntu.com/3583-2/nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.286
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000