CVE-2017-1000379 | Vulnerability Database | Aqua Security

The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.

Affected Software

Name	Vendor	Start Version	End Version
Linux_kernel	Linux	2.6.12 (including)	3.2.90 (excluding)
Linux_kernel	Linux	3.3 (including)	3.10.107 (excluding)
Linux_kernel	Linux	3.11 (including)	3.16.45 (excluding)
Linux_kernel	Linux	3.17 (including)	3.18.58 (excluding)
Linux_kernel	Linux	3.19 (including)	4.1.42 (excluding)
Linux_kernel	Linux	4.2 (including)	4.4.74 (excluding)
Linux_kernel	Linux	4.5 (including)	4.9.34 (excluding)
Linux_kernel	Linux	4.10 (including)	4.11.7 (excluding)

References

http://www.securityfocus.com/bid/99284
https://access.redhat.com/errata/RHSA-2017:1482
https://access.redhat.com/errata/RHSA-2017:1484
https://access.redhat.com/errata/RHSA-2017:1485
https://access.redhat.com/errata/RHSA-2017:1486
https://access.redhat.com/errata/RHSA-2017:1487
https://access.redhat.com/errata/RHSA-2017:1488
https://access.redhat.com/errata/RHSA-2017:1489
https://access.redhat.com/errata/RHSA-2017:1490
https://access.redhat.com/errata/RHSA-2017:1491
https://access.redhat.com/errata/RHSA-2017:1616
https://access.redhat.com/errata/RHSA-2017:1647
https://access.redhat.com/errata/RHSA-2017:1712
https://access.redhat.com/errata/RHSA-2017:1842
https://access.redhat.com/security/cve/CVE-2017-1000379
https://www.exploit-db.com/exploits/42275/
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt

NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-1000379
CWE	https://cwe.mitre.org/data/definitions/.html