suse · CVE-2017-18344

Quick triage

Priority: medium Published: 2021-05-30 14:05:44 UTC Updated: 2026-04-17 15:47:15 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-18344 severity moderate: SUSE including 551 source package names (bpftool-3.10.0-957.el7, cluster-md-kmp-azure-4.12.14-5.8.1, …), 1172 product×package rows across 130 product lines (HPE Helion OpenStack 8, SLES for SAP Applications 11 SP3, … (130 product lines)): Known Not Affected 810, Fixed 362.

Description:

The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent->sigev_notify field, which leads to out-of-bounds access in the show_timer function (called when /proc/$PID/timers is read). This allows userspace applications to read arbitrary kernel memory (on a kernel built with CONFIG_POSIX_TIMERS and CONFIG_CHECKPOINT_RESTORE).

cvelogic Threat Intelligence