CVE-2017-16996

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-16996
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16996.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-16996
Downstream
Related
Published
2017-12-27T17:08:17.750Z
Modified
2026-02-15T07:21:13.002628Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
0c17d1d2c61936401f4702e1846e2c19b200f958
Introduced
bebc6082da0a9f5d47a1ea2edc099bf671058bd4
Fixed
0c17d1d2c61936401f4702e1846e2c19b200f958

Affected versions

v4.*
v4.14
v4.15-rc1
v4.15-rc2
v4.15-rc3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16996.json"
vanir_signatures 
[
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@0c17d1d2c61936401f4702e1846e2c19b200f958",
        "digest": {
            "function_hash": "8306881319680196464531809363129501026",
            "length": 119.0
        },
        "id": "CVE-2017-16996-1614c8fc",
        "deprecated": false,
        "target": {
            "file": "kernel/bpf/verifier.c",
            "function": "coerce_reg_to_32"
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@0c17d1d2c61936401f4702e1846e2c19b200f958",
        "digest": {
            "function_hash": "45445214602348413647780766200092929237",
            "length": 3433.0
        },
        "id": "CVE-2017-16996-8e8a0b0a",
        "deprecated": false,
        "target": {
            "file": "kernel/bpf/verifier.c",
            "function": "check_alu_op"
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@0c17d1d2c61936401f4702e1846e2c19b200f958",
        "digest": {
            "function_hash": "266743233841801490780570328117035649444",
            "length": 4133.0
        },
        "id": "CVE-2017-16996-ada71319",
        "deprecated": false,
        "target": {
            "file": "kernel/bpf/verifier.c",
            "function": "adjust_scalar_min_max_vals"
        }
    },
    {
        "signature_type": "Function",
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@0c17d1d2c61936401f4702e1846e2c19b200f958",
        "digest": {
            "function_hash": "303800547248162034363191185650801119314",
            "length": 3232.0
        },
        "id": "CVE-2017-16996-e686cdd7",
        "deprecated": false,
        "target": {
            "file": "kernel/bpf/verifier.c",
            "function": "check_mem_access"
        }
    },
    {
        "signature_type": "Line",
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@0c17d1d2c61936401f4702e1846e2c19b200f958",
        "digest": {
            "line_hashes": [
                "333506014133752661563528366767951156556",
                "91050884231042104239667467302244636281",
                "258397389910576398823307474669746175156",
                "259079594233500006767453682595877030214",
                "282971820319440004515668897708040816193",
                "90310009957271448947362519708069348651",
                "81296415659152800986675397304805352522",
                "57137679058852816187366555519692608181",
                "35725986544047779909381054364723997179",
                "269519747825614708169803258474570818961",
                "15991544210433294385793356608823638856",
                "36638773005827461715976515126693251919",
                "47446881769789127788299694153359938454",
                "147725453547378938179780117689284890807",
                "12028344336100934665141541066526289083",
                "337985347817402131039819232515165824527",
                "46783994680812400745914287120870131076",
                "304217118576177741953659550596305997746",
                "327452523412457763836400467610894060154",
                "62445109646280093104198044314148164580",
                "322715470762490870172855928356730918903",
                "294196044553519685082137898974442855213",
                "229243238974395036614531763864071663859",
                "163337740489269451639551018078121491248",
                "207749614186453397114095151209757702400",
                "230198684681484899604309014644079457631",
                "207091895264858259466955684285670971600",
                "325786092371933575228159741387625535042"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2017-16996-ec880f50",
        "deprecated": false,
        "target": {
            "file": "kernel/bpf/verifier.c"
        }
    }
]