Linux kernel: CVE-2017-1000112: a memory corruption due to UFO to non-UFO path switch
Posted: Tue Jan 14, 2025 4:51 am
CVE-2017-1000112 is a vulnerability I found in the Linux kernel caused by a UFO to non-UFO path switch for UFO packets. It can be exploited to gain kernel code execution from an unprivileged process.
This vulnerability was reported to security@kernel.org and linux-distros@ following the coordinated disclosure process and then announced on oss-security@. The fix was committed on Aug 10, 2017.
https://hackerone.com/reports/684573
This vulnerability was reported to security@kernel.org and linux-distros@ following the coordinated disclosure process and then announced on oss-security@. The fix was committed on Aug 10, 2017.
https://hackerone.com/reports/684573