update cve/linux-kernel/2017/yaml/CVE-2017-16995.yaml.

Signed-off-by: Tianxu Han <hantianxu@buaa.edu.cn>

cve/linux-kernel/2017/yaml/CVE-2017-16995.yaml

@@ -4,17 +4,17 @@ info:
   name: Linux内核是Linux基金会的开源操作系统Linux所使用的内核。
   severity: high
   description: |
-    由于UFO到非UFO的路径切换，导致可被利用的内存损坏。
+    Linux内核中kernel/bpf/verifier.c的check_alu_op函数在4.4之前允许本地用户通过利用不正确的符号扩展导致拒绝服务（内存损坏）或可能产生不明的其他影响。
   scope-of-influence:
-    linux_kernel <= 4.13.9
+    linux_kernel >=4.9
   reference:
-    -  https://nvd.nist.gov/vuln/detail/CVE-2017-1000112
-    -  https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-1000112
+    -  https://nvd.nist.gov/vuln/detail/cve-2017-16995
+    -  https://github.com/C0dak/CVE-2017-16995
   classification:
-    cvss-metrics: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
-    cvss-score: 7.0
-    cve-id: CVE-2017-1000112
-    cwe-id: CWE-362
+    cvss-metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
+    cvss-score: 7.8
+    cve-id: CVE-2017-16995
+    cwe-id: CWE-119
     cnvd-id: None
     kve-id: None
-  tags: kernel, Privelege Escalation
+  tags: kernel, memory corruption