CVE-2017-14489
- Source
- https://cve.org/CVERecord?id=CVE-2017-14489
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14489.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-14489
- Downstream
- Related
- Published
- 2017-09-15T10:29:00Z
- Modified
- 2026-02-04T16:15:00.056157Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The iscsiifrx function in drivers/scsi/scsitransportiscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
- References
-
- http://www.debian.org/security/2017/dsa-3981
- https://bugzilla.redhat.com/show_bug.cgi?id=1490421
- https://patchwork.kernel.org/patch/9923803/
- https://bugzilla.redhat.com/show_bug.cgi?id=1490421
- https://patchwork.kernel.org/patch/9923803/
- https://bugzilla.redhat.com/show_bug.cgi?id=1490421
- https://patchwork.kernel.org/patch/9923803/
- http://www.securityfocus.com/bid/101011
- https://usn.ubuntu.com/3583-1/
- https://usn.ubuntu.com/3583-2/
- https://www.exploit-db.com/exploits/42932/