Author Archives: Александр Мамалыга

Vulnerability Linux Kernel (CVE-2017-6074)

Vulnerability Linux Kernel (CVE-2017-6074)

It was discovered the vulnerability in Linux kernel (CVE-2017-6074), which allows unprivileged local user to execute some code with root rights.
This vulnerability is actual for all kernels with DCCP option support, from the 2.6.14 to the 4.9.11 versions inclusive, which were builded with CONFIG_IP_DCCP option.
In most cases, dccp is disabled in kernel and it can be connected like a module. You need to disable dccp in your system.
Read More »