CVE-2017-1000253

Name: CVE-2017-1000253
Creator: NVD / NIST
Published: 2017-10-05T01:29:04.79+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.8/10Actively ExploitedEPSS 10.70%

Last modified Jun 17, 2026

CVE-2017-1000253 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. CISA has confirmed active exploitation in the wild. EPSS estimates a 10.70% chance of exploitation in the next 30 days.

Description

Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (backported to Linux 3.10.77 in May 2015), but it was not recognized as a security threat. With CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, and a normal top-down address allocation strategy, load_elf_binary() will attempt to map a PIE binary into an address range immediately below mm->mmap_base. Unfortunately, load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary which means that, while the first PT_LOAD segment is mapped below mm->mmap_base, the subsequent PT_LOAD segment(s) end up being mapped above mm->mmap_base into the are that is supposed to be the "gap" between the stack and the binary.

Metrics

CVSS 3.1

7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

10.70%

95.2th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by Sep 30, 2024.

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Centos	Centos	6.0
Centos	Centos	6.1
Centos	Centos	6.2
Centos	Centos	6.3
Centos	Centos	6.4
Centos	Centos	6.5
Centos	Centos	6.6
Centos	Centos	6.7
Centos	Centos	6.8
Centos	Centos	6.9
Centos	Centos	7.1406
Centos	Centos	7.1503
Centos	Centos	7.1511
Centos	Centos	7.1611
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux	6.1
Redhat	Enterprise Linux	6.2
Redhat	Enterprise Linux	6.3
Redhat	Enterprise Linux	6.4
Redhat	Enterprise Linux	6.5
Redhat	Enterprise Linux	6.6
Redhat	Enterprise Linux	6.7
Redhat	Enterprise Linux	6.8
Redhat	Enterprise Linux	6.9
Redhat	Enterprise Linux	7.0
Redhat	Enterprise Linux	7.1
Redhat	Enterprise Linux	7.2
Redhat	Enterprise Linux	7.3
Linux	Linux Kernel	>= 2.6.25, < 3.2.70
Linux	Linux Kernel	>= 3.3, < 3.4.109
Linux	Linux Kernel	>= 3.5, < 3.10.77
Linux	Linux Kernel	>= 3.11, < 3.12.43
Linux	Linux Kernel	>= 3.13, < 3.14.41
Linux	Linux Kernel	>= 3.15, < 3.16.35
Linux	Linux Kernel	>= 3.17, < 3.18.14
Linux	Linux Kernel	>= 3.19, < 3.19.7
Linux	Linux Kernel	>= 4.0, < 4.0.2

References

http://www.securityfocus.com/bid/101010Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1039434Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2017:2793Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2794Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2795Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2796Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2797Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2798Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2799Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2800Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2801Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2802Third Party Advisory
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txtPatch, Third Party Advisory
http://www.securityfocus.com/bid/101010Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1039434Third Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2017:2793Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2794Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2795Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2796Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2797Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2798Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2799Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2800Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2801Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2802Third Party Advisory
https://www.qualys.com/2017/09/26/cve-2017-1000253/cve-2017-1000253.txtPatch, Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-1000253US Government Resource

Timeline

Published: Oct 5, 2017
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2017-1000253?

How severe is CVE-2017-1000253?

CVE-2017-1000253 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 10.70% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2017-1000253?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-1000253?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST