BSA-2017-310

Brocade Fabric OS

2 more products

21552

17 May 2017

17 May 2017

Closed

Critical

9.8

N/A

CVE-2016-10229

Summary

Security Advisory ID : BSA-2017-310

Component : Linux Kernel

Revision : 1.0: Interim

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.

Affected Products

Product Current Assessment
Brocade SLX-OS Impacted: Fixed in 17r.1.01.
Brocade Virtual Traffic Manager Impacted: Appliance fixed in 10.4, 9.9r2, and later.

Products Confirmed Not Vulnerable

Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network OS, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, Brocade Virtual Traffic Manager, and Brocade Virtual Web Application Firewall are confirmed not affected by this vulnerability.

Workaround

There are no workarounds that address this vulnerability.

Revision History

Version Change Date
1.0 Initial Publication May 17, 2017