BSA-2017-310
21552
17 May 2017
17 May 2017
Closed
Critical
9.8
N/A
CVE-2016-10229
Summary
Security Advisory ID : BSA-2017-310
Component : Linux Kernel
Revision : 1.0: Interim
udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.
Affected Products
Product | Current Assessment |
---|---|
Brocade SLX-OS | Impacted: Fixed in 17r.1.01. |
Brocade Virtual Traffic Manager | Impacted: Appliance fixed in 10.4, 9.9r2, and later. |
Products Confirmed Not Vulnerable
Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network OS, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, Brocade Virtual Traffic Manager, and Brocade Virtual Web Application Firewall are confirmed not affected by this vulnerability.
Workaround
There are no workarounds that address this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | May 17, 2017 |