CVE-2017-0749

A elevation of privilege vulnerability in the Upstream Linux linux kernel. Product: Android. Versions: Android kernel. Android ID: A-36007735.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	17.04 zesty	Not affected
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not affected
linux-armadaxp	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-aws	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not affected
linux-azure	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not affected
linux-flo	17.04 zesty	Not in release
	16.04 LTS xenial	Ignored abandoned
	14.04 LTS trusty	Not in release
linux-gcp	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-gke	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-goldfish	17.04 zesty	Not affected
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-grouper	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-hwe	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-hwe-edge	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-kvm	17.04 zesty	Not in release
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-linaro-omap	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-linaro-shared	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-linaro-vexpress	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-quantal	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-raring	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-saucy	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-trusty	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-utopic	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-vivid	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-wily	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-lts-xenial	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not affected
linux-maguro	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-mako	17.04 zesty	Not in release
	16.04 LTS xenial	Ignored abandoned
	14.04 LTS trusty	Not in release
linux-manta	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-qcm-msm	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release
linux-raspi2	17.04 zesty	Not affected
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-snapdragon	17.04 zesty	Not affected
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
linux-ti-omap4	17.04 zesty	Not in release
	16.04 LTS xenial	Not in release
	14.04 LTS trusty	Not in release

Notes

sbeattie

fix on an android-specific introduced feature feature was introduced differently upstream in 99c621d704cf1c4eb74c3c42e674edf3df64f92d

Severity score breakdown

Parameter	Value
Base score	7.8 · High
Attack vector	Local
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Cvss 3 Severity Score

Status

Notes

sbeattie

Severity score breakdown

References

Other references