VYPR
Critical severity9.8NVD Advisory· Published Apr 28, 2017· Updated Jun 17, 2026

CVE-2017-7895

CVE-2017-7895

Description

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Debian/linux2 versions
    cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
    Range: <3.2.89

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.