DEBIAN-CVE-2017-1000364

Advisory lineage Upstream: 1 Downstream: 2

Upstream

CVE-2017-1000364

Downstream

DLA-993-1 DSA-3886-1

Published: 19 Jun 2017, 16:29

Last modified:28 Apr 2026, 20:16

Vulnerability Summary

Overall Risk (default)

medium

30/100

CVSS Score

7.4 HIGH

3.0 (osv_debian)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

19 Jun 2017, 16:29

Published

Vulnerability first disclosed

28 Apr 2026, 20:16

Last Modified

Vulnerability information updated

Description

An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects Linux Kernel versions 4.11.5 and earlier (the stackguard page was introduced in 2010).

CVSS Metrics

v3.0•HIGH•Score: 7.4CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

debian•linux
< 4.11.6-1 | < 4.11.6-1 | < 4.11.6-1 | < 4.11.6-1

References (1)

https://security-tracker.debian.org/tracker/CVE-2017-1000364