PT-2016-7822 · Linux+5 · Linux Kernel+5

Andrey Konovalov

·

Publicado

2016-12-08

·

Atualizado

2025-09-29

·

CVE-2016-9793

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.8.14
Description The issue is related to the mishandling of negative values of sk sndbuf and sk rcvbuf by the sock setsockopt function in the Linux kernel. This can be exploited by local users with the CAP NET ADMIN capability to cause a denial of service, resulting in memory corruption and system crash, by making a crafted setsockopt system call with the SO SNDBUFFORCE or SO RCVBUFFORCE option.
Recommendations For Linux kernel versions prior to 4.8.14, update to version 4.8.14 or later to resolve the issue. As a temporary workaround, consider restricting the use of the setsockopt system call with the SO SNDBUFFORCE or SO RCVBUFFORCE option to minimize the risk of exploitation.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

ALSA-2025_16880
ALT-PU-2016-2436
ALT-PU-2016-2437
CESA-2017_0933
CVE-2016-9793
DLA-772-1
ELSA-2017-0933
ELSA-2017-0933-1
ELSA-2017-3508
ELSA-2017-3509
ELSA-2017-3510
MGASA-2016-0415
MGASA-2017-0003
MGASA-2017-0004
OPENSUSE-SU-2017_0456-1
OPENSUSE-SU-2017_0458-1
RHSA-2017:0931
RHSA-2017:0932
RHSA-2017:0933
RHSA-2017_0931
RHSA-2017_0933
SUSE-SU-2017:0181-1
SUSE-SU-2017:0333-1
SUSE-SU-2017:0407-1
SUSE-SU-2017:0437-1
SUSE-SU-2017:0464-1
SUSE-SU-2017:0471-1
SUSE-SU-2017:0494-1
SUSE-SU-2017:1102-1
SUSE-SU-2017_0181-1
SUSE-SU-2017_0333-1
SUSE-SU-2017_0437-1
SUSE-SU-2017_0464-1
SUSE-SU-2017_0471-1
SUSE-SU-2017_0494-1
USN-3168-1
USN-3168-2
USN-3169-1
USN-3169-2
USN-3169-3
USN-3169-4
USN-3170-1
USN-3170-2

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu