[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2017-0148":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":44,"duplicates":45,"related":46,"reserved_at":9,"published_at":62,"modified_at":63,"state":9,"summary":64,"references_raw":66,"kevs":115,"epss":9,"epss_history":116,"metrics":117,"affected":118},"MGASA-2017-0148","Updated kernel-linus packages fixes security vulnerabilities\n\nThis kernel-linus update is based on upstream 4.4.68 and fixes at least\nthe following security issues:\n\nfs/namespace.c in the Linux kernel before 4.9 does not restrict how many\nmounts may exist in a mount namespace, which allows local users to cause\na denial of service (memory consumption and deadlock) via MS_BIND mount\nsystem calls, as demonstrated by a loop that triggers exponential growth\nin the number of mounts (CVE-2016-6213).\n\nThe xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in\nthe Linux kernel before 4.6 allows local users to gain privileges or cause\na denial of service (use-after-free) via vectors involving omission of the\nfirmware name from a certain data structure (CVE-2016-7913).\n\nThe nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux\nkernel before 4.5 does not check whether a batch message's length field is\nlarge enough, which allows local users to obtain sensitive information from\nkernel memory or cause a denial of service (infinite loop or out-of-bounds\nread) by leveraging the CAP_NET_ADMIN capability (CVE-2016-7917).\n\nThe tipc_msg_build function in net/tipc/msg.c in the Linux kernel through\n4.8.11 does not validate the relationship between the minimum fragment\nlength and the maximum packet size, which allows local users to gain\nprivileges or cause a denial of service (heap-based buffer overflow) by\nleveraging the CAP_NET_ADMIN capability (CVE-2016-8632).\n\ndrivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local\nusers to bypass integer overflow checks, and cause a denial of service\n(memory corruption) or have unspecified other impact, by leveraging access\nto a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a\n\"state machine confusion bug\" (CVE-2016-9083).\n\ndrivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11\nmisuses the kzalloc function, which allows local users to cause a denial\nof service (integer overflow) or have unspecified other impact by\nleveraging access to a vfio PCI device file (CVE-2016-9084).\n\nIt was discovered that root can gain direct access to an internal keyring,\nsuch as '.builtin_trusted_keys' upstream, by joining it as its session\nkeyring. This allows root to bypass module signature verification by adding\na new public key of its own devising to the keyring (CVE-2016-9604).\n\nThe ping_unhash function in net/ipv4/ping.c in the Linux kernel through\n4.10.8 is too late in obtaining a certain lock and consequently cannot\nensure that disconnect function calls are safe, which allows local users\nto cause a denial of service (panic) by leveraging access to the protocol\nvalue of IPPROTO_ICMP in a socket system call (CVE-2017-2671).\n\nRace condition in kernel/events/core.c in the Linux kernel before 4.9.7\nallows local users to gain privileges via a crafted application that makes\nconcurrent perf_event_open system calls for moving a software group into a\nhardware context. NOTE: this vulnerability exists because of an incomplete\nfix for CVE-2016-6786 (CVE-2017-6001).\n\nThe keyring_search_aux function in security/keys/keyring.c in the Linux\nkernel through 3.14.79 allows local users to cause a denial of service\n(NULL pointer dereference and OOPS) via a request_key system call for the\n\"dead\" type (CVE-2017-6951).\n\nThe packet_set_ring function in net/packet/af_packet.c in the Linux kernel\nthrough 4.10.6 does not properly validate certain block-size data, which\nallows local users to cause a denial of service (overflow) or possibly have\nunspecified other impact via crafted system calls (CVE-2017-7308).\n\nA vulnerability was found in the Linux kernel. It was found that\nkeyctl_set_reqkey_keyring() function leaks thread keyring which allows\nunprivileged local user to exhaust kernel memory (CVE-2017-7472).\n\nThe NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through\n4.10.11 allows remote attackers to cause a denial of service (system crash)\nvia a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and\nfs/nfsd/nfsxdr.c (CVE-2017-7645).\n\nThe NFSv2 and NFSv3 server implementations in the Linux kernel through\n4.10.13 lack certain checks for the end of a buffer, which allows remote\nattackers to trigger pointer-arithmetic errors or possibly have unspecified\nother impact via crafted requests, related to fs/nfsd/nfs3xdr.c and\nfs/nfsd/nfsxdr.c (CVE-2017-7895).\n\nFor other upstream fixes in this update, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42],{"_key":15},"CVE-2016-6213",{"_key":17},"CVE-2016-7913",{"_key":19},"CVE-2016-7917",{"_key":21},"CVE-2016-8632",{"_key":23},"CVE-2016-9083",{"_key":25},"CVE-2016-9084",{"_key":27},"CVE-2016-9120",{"_key":29},"CVE-2016-9604",{"_key":31},"CVE-2017-2671",{"_key":33},"CVE-2017-6001",{"_key":35},"CVE-2017-6951",{"_key":37},"CVE-2017-7308",{"_key":39},"CVE-2017-7472",{"_key":41},"CVE-2017-7645",{"_key":43},"CVE-2017-7895",[],[],[47,48,49,50,51,52,53,54,55,56,57,58,59,60,61],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},"2017-05-26T06:54:58Z","2026-04-16T06:25:22.878869572Z",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[67,73,78,83,87,91,95,99,103,107,111],{"url":68,"sources":69,"tags":71},"https://advisories.mageia.org/MGASA-2017-0148.html",[70],"osv_mageia",[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://bugs.mageia.org/show_bug.cgi?id=20860",[70],[77],"REPORT",{"url":79,"sources":80,"tags":81},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.60",[70],[77,82],"WEB",{"url":84,"sources":85,"tags":86},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.61",[70],[77,82],{"url":88,"sources":89,"tags":90},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.62",[70],[77,82],{"url":92,"sources":93,"tags":94},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.63",[70],[77,82],{"url":96,"sources":97,"tags":98},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.64",[70],[77,82],{"url":100,"sources":101,"tags":102},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.65",[70],[77,82],{"url":104,"sources":105,"tags":106},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.66",[70],[77,82],{"url":108,"sources":109,"tags":110},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.67",[70],[77,82],{"url":112,"sources":113,"tags":114},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.68",[70],[77,82],[],[],[],[119],{"ecosystem":120,"name":121,"vendor":122,"product":121,"cpe_part":9,"purl_type":123,"purl_namespace":122,"purl_name":121,"source":9,"versions":124},"Mageia","kernel-linus","mageia","rpm",[125],{"version":126,"is_range":127,"range_type":128,"version_start":9,"version_start_type":9,"version_end":129,"version_end_type":130,"fixed_in":9},"lt4_4_68_1_mga5",true,"ecosystem","4.4.68-1.mga5","excluding"]