Upstream information

CVE-2017-5577 at MITRE

Description

The vc4_get_bcl function in drivers/gpu/drm/vc4/vc4_gem.c in the VideoCore DRM driver in the Linux kernel before 4.9.7 does not set an errno value upon certain overflow detections, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) via inconsistent size values in a VC4_SUBMIT_CL ioctl call.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.94
Vector AV:L/AC:L/Au:N/C:N/I:N/A:C
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
CVSS v3 Scores
  National Vulnerability Database
Base Score 5.5
Vector AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Vector Local
Access Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Impact None
Integrity Impact None
Availability Impact High
SUSE Bugzilla entry: 1021294 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Openstack Cloud Magnum Orchestration 7
  • kernel-default >= 4.4.49-92.11.1
Patchnames:
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-300
SUSE Linux Enterprise Build System Kit 12 SP2
  • kernel-zfcpdump >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-BSK-12-SP2-2017-300
SUSE Linux Enterprise Desktop 12 SP2
  • kernel-default >= 4.4.49-92.11.1
  • kernel-default-devel >= 4.4.49-92.11.1
  • kernel-default-extra >= 4.4.49-92.11.1
  • kernel-devel >= 4.4.49-92.11.1
  • kernel-macros >= 4.4.49-92.11.1
  • kernel-source >= 4.4.49-92.11.1
  • kernel-syms >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-DESKTOP-12-SP2-2017-300
SUSE Linux Enterprise High Availability 12 SP2
  • cluster-md-kmp-default >= 4.4.49-92.11.1
  • cluster-network-kmp-default >= 4.4.49-92.11.1
  • dlm-kmp-default >= 4.4.49-92.11.1
  • gfs2-kmp-default >= 4.4.49-92.11.1
  • kernel-default >= 4.4.49-92.11.1
  • ocfs2-kmp-default >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-HA-12-SP2-2017-300
SUSE Linux Enterprise Live Patching 12
  • kgraft-patch-4_4_49-92_11-default >= 1-6.1
  • kgraft-patch-SLE12-SP2_Update_5 >= 1-6.1
Patchnames:
SUSE-SLE-Live-Patching-12-2017-300
SUSE Linux Enterprise Server 12 SP2
  • kernel-default >= 4.4.49-92.11.1
  • kernel-default-base >= 4.4.49-92.11.1
  • kernel-default-devel >= 4.4.49-92.11.1
  • kernel-default-man >= 4.4.49-92.11.1
  • kernel-devel >= 4.4.49-92.11.1
  • kernel-macros >= 4.4.49-92.11.1
  • kernel-source >= 4.4.49-92.11.1
  • kernel-syms >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-SERVER-12-SP2-2017-300
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • kernel-default >= 4.4.49-92.11.1
  • kernel-default-base >= 4.4.49-92.11.1
  • kernel-default-devel >= 4.4.49-92.11.1
  • kernel-devel >= 4.4.49-92.11.1
  • kernel-macros >= 4.4.49-92.11.1
  • kernel-source >= 4.4.49-92.11.1
  • kernel-syms >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-RPI-12-SP2-2017-300
SUSE Linux Enterprise Software Development Kit 12 SP2
  • kernel-docs >= 4.4.49-92.11.3
  • kernel-obs-build >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-SDK-12-SP2-2017-300
SUSE Linux Enterprise Workstation Extension 12 SP2
  • kernel-default >= 4.4.49-92.11.1
  • kernel-default-extra >= 4.4.49-92.11.1
Patchnames:
SUSE-SLE-WE-12-SP2-2017-300
openSUSE Leap 42.2
  • kernel-debug >= 4.4.46-11.1
  • kernel-debug-base >= 4.4.46-11.1
  • kernel-debug-base-debuginfo >= 4.4.46-11.1
  • kernel-debug-debuginfo >= 4.4.46-11.1
  • kernel-debug-debugsource >= 4.4.46-11.1
  • kernel-debug-devel >= 4.4.46-11.1
  • kernel-debug-devel-debuginfo >= 4.4.46-11.1
  • kernel-default >= 4.4.46-11.1
  • kernel-default-base >= 4.4.46-11.1
  • kernel-default-base-debuginfo >= 4.4.46-11.1
  • kernel-default-debuginfo >= 4.4.46-11.1
  • kernel-default-debugsource >= 4.4.46-11.1
  • kernel-default-devel >= 4.4.46-11.1
  • kernel-devel >= 4.4.46-11.1
  • kernel-docs >= 4.4.46-11.3
  • kernel-docs-html >= 4.4.46-11.3
  • kernel-docs-pdf >= 4.4.46-11.3
  • kernel-macros >= 4.4.46-11.1
  • kernel-obs-build >= 4.4.46-11.1
  • kernel-obs-build-debugsource >= 4.4.46-11.1
  • kernel-obs-qa >= 4.4.46-11.1
  • kernel-source >= 4.4.46-11.1
  • kernel-source-vanilla >= 4.4.46-11.1
  • kernel-syms >= 4.4.46-11.1
  • kernel-vanilla >= 4.4.46-11.1
  • kernel-vanilla-base >= 4.4.46-11.1
  • kernel-vanilla-base-debuginfo >= 4.4.46-11.1
  • kernel-vanilla-debuginfo >= 4.4.46-11.1
  • kernel-vanilla-debugsource >= 4.4.46-11.1
  • kernel-vanilla-devel >= 4.4.46-11.1
Patchnames:
openSUSE-2017-245