[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2017-0136":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":40,"duplicates":41,"related":42,"reserved_at":9,"published_at":56,"modified_at":57,"state":9,"summary":58,"references_raw":60,"kevs":97,"epss":9,"epss_history":98,"metrics":99,"affected":100},"MGASA-2017-0136","Updated kernel packages fixes security vulnerabilities\n\nThis kernel update is based on upstream 4.4.65 and fixes at least\nthe following security issues:\n\nfs/namespace.c in the Linux kernel before 4.9 does not restrict how many\nmounts may exist in a mount namespace, which allows local users to cause\na denial of service (memory consumption and deadlock) via MS_BIND mount\nsystem calls, as demonstrated by a loop that triggers exponential growth\nin the number of mounts (CVE-2016-6213).\n\nThe xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in\nthe Linux kernel before 4.6 allows local users to gain privileges or cause\na denial of service (use-after-free) via vectors involving omission of the\nfirmware name from a certain data structure (CVE-2016-7913).\n\nThe nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux\nkernel before 4.5 does not check whether a batch message's length field is\nlarge enough, which allows local users to obtain sensitive information from\nkernel memory or cause a denial of service (infinite loop or out-of-bounds\nread) by leveraging the CAP_NET_ADMIN capability (CVE-2016-7917).\n\nThe tipc_msg_build function in net/tipc/msg.c in the Linux kernel through\n4.8.11 does not validate the relationship between the minimum fragment\nlength and the maximum packet size, which allows local users to gain\nprivileges or cause a denial of service (heap-based buffer overflow) by\nleveraging the CAP_NET_ADMIN capability (CVE-2016-8632).\n\ndrivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local\nusers to bypass integer overflow checks, and cause a denial of service\n(memory corruption) or have unspecified other impact, by leveraging access\nto a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a\n\"state machine confusion bug\" (CVE-2016-9083).\n\ndrivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11\nmisuses the kzalloc function, which allows local users to cause a denial\nof service (integer overflow) or have unspecified other impact by\nleveraging access to a vfio PCI device file (CVE-2016-9084).\n\nIt was discovered that root can gain direct access to an internal keyring,\nsuch as '.builtin_trusted_keys' upstream, by joining it as its session\nkeyring. This allows root to bypass module signature verification by adding\na new public key of its own devising to the keyring (CVE-2016-9604).\n\nThe ping_unhash function in net/ipv4/ping.c in the Linux kernel through\n4.10.8 is too late in obtaining a certain lock and consequently cannot\nensure that disconnect function calls are safe, which allows local users\nto cause a denial of service (panic) by leveraging access to the protocol\nvalue of IPPROTO_ICMP in a socket system call (CVE-2017-2671).\n\nRace condition in kernel/events/core.c in the Linux kernel before 4.9.7\nallows local users to gain privileges via a crafted application that makes\nconcurrent perf_event_open system calls for moving a software group into a\nhardware context. NOTE: this vulnerability exists because of an incomplete\nfix for CVE-2016-6786 (CVE-2017-6001).\n\nThe keyring_search_aux function in security/keys/keyring.c in the Linux\nkernel through 3.14.79 allows local users to cause a denial of service\n(NULL pointer dereference and OOPS) via a request_key system call for the\n\"dead\" type (CVE-2017-6951).\n\nThe packet_set_ring function in net/packet/af_packet.c in the Linux kernel\nthrough 4.10.6 does not properly validate certain block-size data, which\nallows local users to cause a denial of service (overflow) or possibly have\nunspecified other impact via crafted system calls (CVE-2017-7308).\n\nA vulnerability was found in the Linux kernel. It was found that\nkeyctl_set_reqkey_keyring() function leaks thread keyring which allows\nunprivileged local user to exhaust kernel memory (CVE-2017-7472).\n\nFor other upstream fixes in this update, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38],{"_key":15},"CVE-2016-6213",{"_key":17},"CVE-2016-7913",{"_key":19},"CVE-2016-7917",{"_key":21},"CVE-2016-8632",{"_key":23},"CVE-2016-9083",{"_key":25},"CVE-2016-9084",{"_key":27},"CVE-2016-9120",{"_key":29},"CVE-2016-9604",{"_key":31},"CVE-2017-2671",{"_key":33},"CVE-2017-6001",{"_key":35},"CVE-2017-6951",{"_key":37},"CVE-2017-7308",{"_key":39},"CVE-2017-7472",[],[],[43,44,45,46,47,48,49,50,51,52,53,54,55],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},"2017-05-10T20:47:44Z","2026-04-16T06:23:14.218484255Z",{"cisa_kev":59,"cisa_ransomware":59,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[61,67,72,77,81,85,89,93],{"url":62,"sources":63,"tags":65},"https://advisories.mageia.org/MGASA-2017-0136.html",[64],"osv_mageia",[66],"Advisory",{"url":68,"sources":69,"tags":70},"https://bugs.mageia.org/show_bug.cgi?id=20747",[64],[71],"REPORT",{"url":73,"sources":74,"tags":75},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.60",[64],[71,76],"WEB",{"url":78,"sources":79,"tags":80},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.61",[64],[71,76],{"url":82,"sources":83,"tags":84},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.62",[64],[71,76],{"url":86,"sources":87,"tags":88},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.63",[64],[71,76],{"url":90,"sources":91,"tags":92},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.64",[64],[71,76],{"url":94,"sources":95,"tags":96},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.65",[64],[71,76],[],[],[],[101,113,117,123,127],{"ecosystem":102,"name":103,"vendor":104,"product":103,"cpe_part":9,"purl_type":105,"purl_namespace":104,"purl_name":103,"source":9,"versions":106},"Mageia","kernel","mageia","rpm",[107],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},"lt4_4_65_1_mga5",true,"ecosystem","4.4.65-1.mga5","excluding",{"ecosystem":102,"name":114,"vendor":104,"product":114,"cpe_part":9,"purl_type":105,"purl_namespace":104,"purl_name":114,"source":9,"versions":115},"kernel-userspace-headers",[116],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},{"ecosystem":102,"name":118,"vendor":104,"product":118,"cpe_part":9,"purl_type":105,"purl_namespace":104,"purl_name":118,"source":9,"versions":119},"kmod-vboxadditions",[120],{"version":121,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":122,"version_end_type":112,"fixed_in":9},"lt5_1_22_2_mga5","5.1.22-2.mga5",{"ecosystem":102,"name":124,"vendor":104,"product":124,"cpe_part":9,"purl_type":105,"purl_namespace":104,"purl_name":124,"source":9,"versions":125},"kmod-virtualbox",[126],{"version":121,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":122,"version_end_type":112,"fixed_in":9},{"ecosystem":102,"name":128,"vendor":104,"product":128,"cpe_part":9,"purl_type":105,"purl_namespace":104,"purl_name":128,"source":9,"versions":129},"kmod-xtables-addons",[130],{"version":131,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":132,"version_end_type":112,"fixed_in":9},"lt2_10_37_mga5","2.10-37.mga5"]