PT-2016-6211 · Linux+5 · Linux Kernel+5

Qian Zhang

·

Publicado

2016-06-24

·

Atualizado

2024-06-15

·

CVE-2016-4997

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.6.3
Description The issue allows local users to gain privileges or cause a denial of service due to memory corruption. This can be achieved by providing a crafted offset value, leveraging in-container root access.
Recommendations For Linux kernel versions prior to 4.6.3, update to version 4.6.3 or later to resolve the issue.

Exploit

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

ALT-PU-2016-1641
ALT-PU-2016-1642
CESA-2016_1847
CVE-2016-4997
DSA-3607-1
MGASA-2016-0271
MGASA-2016-0283
MGASA-2016-0284
OPENSUSE-SU-2016_1798-1
OPENSUSE-SU-2016_2144-1
OPENSUSE-SU-2016_2184-1
OPENSUSE-SU-2017_1140-1
OPENSUSE-SU-2024:10128-1
RHSA-2016:1847
RHSA-2016:1875
RHSA-2016:1883
RHSA-2016_1847
RHSA-2016_1875
SUSE-SU-2016:1709-1
SUSE-SU-2016:1710-1
SUSE-SU-2016:1937-1
SUSE-SU-2016:1985-1
SUSE-SU-2016:2018-1
SUSE-SU-2016:2105-1
SUSE-SU-2016:2174-1
SUSE-SU-2016:2177-1
SUSE-SU-2016:2178-1
SUSE-SU-2016:2179-1
SUSE-SU-2016:2180-1
SUSE-SU-2016:2181-1
SUSE-SU-2016:2245-1
SUSE-SU-2016:2632-1
SUSE-SU-2016:2633-1
SUSE-SU-2016:2636-1
SUSE-SU-2016:2655-1
SUSE-SU-2016:2658-1
SUSE-SU-2016:2659-1
SUSE-SU-2016:2976-1
SUSE-SU-2016:3069-1
SUSE-SU-2016:3304-1
SUSE-SU-2017:0333-1
SUSE-SU-2017:0471-1
SUSE-SU-2017:1990-1
SUSE-SU-2017:2342-1
USN-3016-1
USN-3016-2
USN-3016-3
USN-3016-4
USN-3017-1
USN-3017-2
USN-3017-3
USN-3018-1
USN-3018-2
USN-3019-1
USN-3020-1
USN-3338-1

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu