CVE-2017-18218

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-18218
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-18218.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-18218
Downstream
Published
2018-03-05T20:29:00.270Z
Modified
2026-02-22T08:13:15.387966Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In drivers/net/ethernet/hisilicon/hns/hnsenet.c in the Linux kernel before 4.13, local users can cause a denial of service (use-after-free and BUG) or possibly have unspecified other impact by leveraging differences in skb handling between hnsnicnetxmithw and hnsnicnetxmit.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
27463ad99f738ed93c7c8b3e2e5bc8c4853a2ff2
Introduced
c470abd4fde40ea6a0846a2beab642a578c0b8cd
Fixed
569dbb88e80deb68974ef6fdd6a13edb9d686261

Affected versions

v4.*
v4.10
v4.11
v4.11-rc1
v4.11-rc2
v4.11-rc3
v4.11-rc4
v4.11-rc5
v4.11-rc6
v4.11-rc7
v4.11-rc8
v4.12
v4.12-rc1
v4.12-rc2
v4.12-rc3
v4.12-rc4
v4.12-rc5
v4.12-rc6
v4.12-rc7

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-18218.json"
vanir_signatures 
[
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@27463ad99f738ed93c7c8b3e2e5bc8c4853a2ff2",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "228448140282040953447528930480836408213",
                "143571983716970441597392834422669287710",
                "308325738039578114974139856207597292168",
                "320883350590900496693742284650001065674"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "target": {
            "file": "drivers/net/ethernet/hisilicon/hns/hns_enet.h"
        },
        "id": "CVE-2017-18218-3b7a661f",
        "signature_version": "v1"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@27463ad99f738ed93c7c8b3e2e5bc8c4853a2ff2",
        "signature_type": "Function",
        "digest": {
            "function_hash": "95076211950663122242804212738994130274",
            "length": 407.0
        },
        "deprecated": false,
        "target": {
            "file": "drivers/net/ethernet/hisilicon/hns/hns_enet.c",
            "function": "hns_nic_net_xmit"
        },
        "id": "CVE-2017-18218-535ce091",
        "signature_version": "v1"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@27463ad99f738ed93c7c8b3e2e5bc8c4853a2ff2",
        "signature_type": "Function",
        "digest": {
            "function_hash": "40919866667077611472300451113611979085",
            "length": 2179.0
        },
        "deprecated": false,
        "target": {
            "file": "drivers/net/ethernet/hisilicon/hns/hns_enet.c",
            "function": "hns_nic_net_xmit_hw"
        },
        "id": "CVE-2017-18218-9d06c38e",
        "signature_version": "v1"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@27463ad99f738ed93c7c8b3e2e5bc8c4853a2ff2",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "44630964221227627764022726219763705084",
                "88918136563554994154931551268910618776",
                "186776491523076926746427077419047752042",
                "315298898613224552641976678582148266666",
                "53094829207758289496598214309382357287",
                "139761976015217733074555650792619726008",
                "159977503854097654903607093289710776710",
                "81290582455614855016626690705411218495",
                "58673118654464375522487281831178515844",
                "55519615989531641991867989830458185093",
                "17484482314186030629602548522676481035",
                "314663647981338326377356632373021255089",
                "61477309170753337509767175659387606522",
                "102519400646813202776324058774338018085",
                "274098134428667695695469959009324780801",
                "327686921312339386411682791389247762619",
                "321345079815953726447444071681020967992",
                "290397971868867371896935793395191766323",
                "18834783598908310782900518405755152296",
                "309319529436053947170200283827768487167",
                "309381636150744945615197815263245617614",
                "57877610719616673287085024699580979075"
            ],
            "threshold": 0.9
        },
        "deprecated": false,
        "target": {
            "file": "drivers/net/ethernet/hisilicon/hns/hns_enet.c"
        },
        "id": "CVE-2017-18218-c4698f7b",
        "signature_version": "v1"
    }
]