CVE-2017-6899
Last modified
CVE-2017-6899 is a vulnerability of currently unknown severity. The msm_bus_dbg_update_request_write function in drivers/platform/msm/msm_bus/msm_bus_dbg.c in android_kernel_huawei_msm8916 through 2017-06-16 in LineageOS, and possibly other kernels for MSM devices, allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted /sys/kernel/debug/msm-bus-dbg/client-data/update-request write request.. EPSS estimates a 0.35% chance of exploitation in the next 30 days.
Description
The msm_bus_dbg_update_request_write function in drivers/platform/msm/msm_bus/msm_bus_dbg.c in android_kernel_huawei_msm8916 through 2017-06-16 in LineageOS, and possibly other kernels for MSM devices, allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted /sys/kernel/debug/msm-bus-dbg/client-data/update-request write request.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Lineageos | Lineageos | <= 2017-06-16 |
References
- http://blog.secret-team.cn/index.php/archives/5/Third Party Advisory
- http://www.securityfocus.com/bid/99107Third Party Advisory, VDB Entry
- http://blog.secret-team.cn/index.php/archives/5/Third Party Advisory
- http://www.securityfocus.com/bid/99107Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-6899?
How severe is CVE-2017-6899?
How do I fix CVE-2017-6899?
Are you affected by CVE-2017-6899?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST