High severity7.8NVD Advisory· Published Mar 29, 2017· Updated May 13, 2026

CVE-2017-7308

Description

The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate certain block-size data, which allows local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privileges (if the CAP_NET_RAW capability is held), via crafted system calls.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: >=2.6.27,<3.2.89

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97234nvdThird Party AdvisoryVDB Entry
access.redhat.com/errata/RHSA-2017:1297nvdThird Party Advisory
access.redhat.com/errata/RHSA-2017:1298nvdThird Party Advisory
access.redhat.com/errata/RHSA-2017:1308nvdThird Party Advisory
access.redhat.com/errata/RHSA-2018:1854nvdThird Party Advisory
googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.htmlnvdThird Party Advisory
patchwork.ozlabs.org/patch/744811/nvdThird Party Advisory
patchwork.ozlabs.org/patch/744812/nvdThird Party Advisory
patchwork.ozlabs.org/patch/744813/nvdThird Party Advisory
source.android.com/security/bulletin/2017-07-01nvdThird Party Advisory
www.exploit-db.com/exploits/41994/nvdThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/44654/nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.070
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000