CVE-2017-8068

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-8068
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8068.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-8068
Downstream
Published
2017-04-23T05:59:00.473Z
Modified
2026-02-24T01:24:21.038214Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

drivers/net/usb/pegasus.c in the Linux kernel 4.9.x before 4.9.11 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
5593523f968bc86d42a035c6df47d5e0979b5ace
Introduced
69973b830859bc6529a7a0468ba0d80ee5117826
Fixed
5593523f968bc86d42a035c6df47d5e0979b5ace

Affected versions

v4.*
v4.10-rc1
v4.10-rc2
v4.10-rc3
v4.10-rc4
v4.10-rc5
v4.10-rc6
v4.9

Database specific

vanir_signatures 
[
    {
        "id": "CVE-2017-8068-06d651e7",
        "signature_version": "v1",
        "digest": {
            "function_hash": "101236936194413997995490729924597918855",
            "length": 337.0
        },
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5593523f968bc86d42a035c6df47d5e0979b5ace",
        "signature_type": "Function",
        "target": {
            "file": "drivers/net/usb/pegasus.c",
            "function": "set_register"
        }
    },
    {
        "id": "CVE-2017-8068-3a73b5e1",
        "signature_version": "v1",
        "digest": {
            "function_hash": "11641287829162638450221256810051748036",
            "length": 351.0
        },
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5593523f968bc86d42a035c6df47d5e0979b5ace",
        "signature_type": "Function",
        "target": {
            "file": "drivers/net/usb/pegasus.c",
            "function": "set_registers"
        }
    },
    {
        "id": "CVE-2017-8068-6818ac62",
        "signature_version": "v1",
        "digest": {
            "function_hash": "133502024462860775432087650213354140420",
            "length": 351.0
        },
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5593523f968bc86d42a035c6df47d5e0979b5ace",
        "signature_type": "Function",
        "target": {
            "file": "drivers/net/usb/pegasus.c",
            "function": "get_registers"
        }
    },
    {
        "id": "CVE-2017-8068-c14f4807",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "297844184292605368197280737297973506554",
                "41530314580887411625992314582281754675",
                "35011510817678427394676998745676316612",
                "330128093002079134385386898789481686427",
                "64846378768084160403052501645221250176",
                "223619100484507444280790300908494053210",
                "102919357658051517955319631842265347896",
                "222749706050715418362074515070830937826",
                "183539763356753690481966945352011783748",
                "169804363736354947296036491690725256585",
                "98494595533768895246505095627182222723",
                "332911087802298055319718848714756936959",
                "325996718794611277601927433053778332535",
                "275488386361481476164329367938332250968",
                "256217413794696508934045760807404474217",
                "162007757988972435883737976267895930176",
                "267509534499483644627078332560531376053",
                "220384525152461215369585141107963797861",
                "58310936359025434999081820862615699897",
                "183539763356753690481966945352011783748",
                "169804363736354947296036491690725256585",
                "105742058965554980208320187097814081067",
                "192443831972411600422012157533706840361",
                "15649264834080721109188276853827377025",
                "198051740861724568578185358778242356339",
                "151625619280736953308962541101359413481",
                "89958878180343442363832441742322036649",
                "126061248274051887901800727015046812846",
                "335775945747884513742252418621678209058",
                "47474185003162183577079807228228867883",
                "183539763356753690481966945352011783748",
                "169804363736354947296036491690725256585",
                "25869337795804437666442255282751724897"
            ]
        },
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5593523f968bc86d42a035c6df47d5e0979b5ace",
        "signature_type": "Line",
        "target": {
            "file": "drivers/net/usb/pegasus.c"
        }
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8068.json"