PT-2016-3096 · Linux+7 · Linux Kernel+7

Phil Oester

·

Published

2016-10-18

·

Updated

2026-05-14

·

CVE-2016-5195

CVSS v2.0

7.2

High

VectorAV:L/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions 2.x through 4.8.2
Description A race condition in the mm/gup.c component allows local users to gain elevated privileges. This is achieved by leveraging the incorrect handling of the copy-on-write (COW) feature—a mechanism that allows multiple processes to share the same memory page until one modifies it—to write data into read-only memory mappings. This issue was exploited in the wild in October 2016 and is commonly known as Dirty COW.
Recommendations Update Linux kernel to version 4.8.3 or later.

Exploit

Fix

LPE

Race Condition

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2025_16880
ALT-PU-2016-2128
ALT-PU-2016-2139
ALT-PU-2016-2147
BDU:2017-00758
CESA-2016_2098
CESA-2016_2105
CVE-2016-5195
DLA-670-1
DSA-3696-1
ELSA-2016-2098
ELSA-2016-2105
ELSA-2016-3632
ELSA-2016-3633
ELSA-2016-3634
MGASA-2016-0347
MGASA-2016-0364
OPENSUSE-SU-2016_2583-1
OPENSUSE-SU-2016_2584-1
OPENSUSE-SU-2016_2625-1
OPENSUSE-SU-2020:0554-1
OPENSUSE-SU-2020_0554-1
OPENSUSE-SU-2024:10128-1
OPENSUSE-SU-2024:10901-1
RHSA-2016:2098
RHSA-2016:2105
RHSA-2016:2106
RHSA-2016:2107
RHSA-2016:2110
RHSA-2016:2118
RHSA-2016:2120
RHSA-2016:2124
RHSA-2016:2126
RHSA-2016:2127
RHSA-2016:2128
RHSA-2016:2132
RHSA-2016:2133
RHSA-2016_2098
RHSA-2016_2105
RHSA-2016_2110
RHSA-2016_2124
RHSA-2017:0372
RHSA-2017_0372
SUSE-SU-2016:2585-1
SUSE-SU-2016:2592-1
SUSE-SU-2016:2593-1
SUSE-SU-2016:2596-1
SUSE-SU-2016:2614-1
SUSE-SU-2016:2629-1
SUSE-SU-2016:2630-1
SUSE-SU-2016:2631-1
SUSE-SU-2016:2632-1
SUSE-SU-2016:2633-1
SUSE-SU-2016:2634-1
SUSE-SU-2016:2635-1
SUSE-SU-2016:2636-1
SUSE-SU-2016:2637-1
SUSE-SU-2016:2638-1
SUSE-SU-2016:2655-1
SUSE-SU-2016:2657-1
SUSE-SU-2016:2658-1
SUSE-SU-2016:2659-1
SUSE-SU-2016:2673-1
SUSE-SU-2016:3069-1
SUSE-SU-2016:3304-1
SUSE-SU-2016_2585-1
SUSE-SU-2016_2592-1
SUSE-SU-2016_2593-1
SUSE-SU-2016_2596-1
SUSE-SU-2016_2614-1
SUSE-SU-2016_2632-1
SUSE-SU-2016_2633-1
SUSE-SU-2016_2636-1
SUSE-SU-2016_2655-1
SUSE-SU-2016_2657-1
SUSE-SU-2016_2658-1
SUSE-SU-2016_2659-1
USN-3104-1
USN-3104-2
USN-3105-1
USN-3105-2
USN-3106-1
USN-3106-2
USN-3106-3
USN-3106-4
USN-3107-1
USN-3107-2

Affected Products

Alt Linux
Centos
Huawei Vrp
Junos
Linux Kernel
Red Hat
Suse
Ubuntu