PT-2016-6211 · Linux+5 · Linux Kernel+5

Qian Zhang

·

Published

2016-06-24

·

Updated

2024-06-15

·

CVE-2016-4997

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.6.3
Description The issue allows local users to gain privileges or cause a denial of service due to memory corruption. This can be achieved by providing a crafted offset value, leveraging in-container root access.
Recommendations For Linux kernel versions prior to 4.6.3, update to version 4.6.3 or later to resolve the issue.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2016-1641
ALT-PU-2016-1642
CESA-2016_1847
CVE-2016-4997
DSA-3607-1
MGASA-2016-0271
MGASA-2016-0283
MGASA-2016-0284
OPENSUSE-SU-2016_1798-1
OPENSUSE-SU-2016_2144-1
OPENSUSE-SU-2016_2184-1
OPENSUSE-SU-2017_1140-1
OPENSUSE-SU-2024:10128-1
RHSA-2016:1847
RHSA-2016:1875
RHSA-2016:1883
RHSA-2016_1847
RHSA-2016_1875
SUSE-SU-2016:1709-1
SUSE-SU-2016:1710-1
SUSE-SU-2016:1937-1
SUSE-SU-2016:1985-1
SUSE-SU-2016:2018-1
SUSE-SU-2016:2105-1
SUSE-SU-2016:2174-1
SUSE-SU-2016:2177-1
SUSE-SU-2016:2178-1
SUSE-SU-2016:2179-1
SUSE-SU-2016:2180-1
SUSE-SU-2016:2181-1
SUSE-SU-2016:2245-1
SUSE-SU-2016:2632-1
SUSE-SU-2016:2633-1
SUSE-SU-2016:2636-1
SUSE-SU-2016:2655-1
SUSE-SU-2016:2658-1
SUSE-SU-2016:2659-1
SUSE-SU-2016:2976-1
SUSE-SU-2016:3069-1
SUSE-SU-2016:3304-1
SUSE-SU-2017:0333-1
SUSE-SU-2017:0471-1
SUSE-SU-2017:1990-1
SUSE-SU-2017:2342-1
USN-3016-1
USN-3016-2
USN-3016-3
USN-3016-4
USN-3017-1
USN-3017-2
USN-3017-3
USN-3018-1
USN-3018-2
USN-3019-1
USN-3020-1
USN-3338-1

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu