Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability

Description:  Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline.

Impact: Local attackers may exploit this issue to gain elevated privileges.

Mitigation: Updates are available. Please check the respective vendor advisory for more information.

Reference URL’s:

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2636
• https://access.redhat.com/security/cve/cve-2017-2636
• https://security-tracker.debian.org/tracker/CVE-2017-2636
• https://kalilinux.co/2017/03/17/cve-2017-2636-linux-kernel-flaw-can-local-privilege-escalation/#.WM-uEmclHIU

Recommended Posts

Press release April 2023: Situational Security Alerts from CIRT

21 Apr 2023 - Articles, English articles, News, Notice, Security Advisories & Alerts

Security Best Practices

29 Mar 2023 - Security Advisories & Alerts

Dropbox discloses breach after hacker stole 130 GitHub repositories

02 Nov 2022 - Security Advisories & Alerts