PT-2016-7815 · Linux+2 · Linux Kernel+2

Andrey Konovalov

Publicado

2016-12-28

Atualizado

2018-08-13

CVE-2016-9755

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.9

Description The issue is related to the netfilter subsystem in the Linux kernel, which mishandles IPv6 reassembly. This can be exploited by local users via a crafted application that makes socket, connect, and writev system calls, potentially leading to a denial of service (integer overflow, out-of-bounds write, and GPF) or other unspecified impacts.

Recommendations For Linux kernel versions prior to 4.9, update to version 4.9 or later to resolve the issue.

Correção

DoS

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

ALT-PU-2017-1011

ALT-PU-2017-1330

CVE-2016-9755

USN-3359-1

USN-3361-1

Produtos afetados

Alt Linux

Linux Kernel

Ubuntu

PT-2016-7815 · Linux+2 · Linux Kernel+2

CVE-2016-9755

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 57