PT-2016-7822 · Linux+5 · Linux Kernel+5

Andrey Konovalov

·

Published

2016-12-08

·

Updated

2025-09-29

·

CVE-2016-9793

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.8.14
Description The issue is related to the mishandling of negative values of sk sndbuf and sk rcvbuf by the sock setsockopt function in the Linux kernel. This can be exploited by local users with the CAP NET ADMIN capability to cause a denial of service, resulting in memory corruption and system crash, by making a crafted setsockopt system call with the SO SNDBUFFORCE or SO RCVBUFFORCE option.
Recommendations For Linux kernel versions prior to 4.8.14, update to version 4.8.14 or later to resolve the issue. As a temporary workaround, consider restricting the use of the setsockopt system call with the SO SNDBUFFORCE or SO RCVBUFFORCE option to minimize the risk of exploitation.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2025_16880
ALT-PU-2016-2436
ALT-PU-2016-2437
CESA-2017_0933
CVE-2016-9793
DLA-772-1
ELSA-2017-0933
ELSA-2017-0933-1
ELSA-2017-3508
ELSA-2017-3509
ELSA-2017-3510
MGASA-2016-0415
MGASA-2017-0003
MGASA-2017-0004
OPENSUSE-SU-2017_0456-1
OPENSUSE-SU-2017_0458-1
RHSA-2017:0931
RHSA-2017:0932
RHSA-2017:0933
RHSA-2017_0931
RHSA-2017_0933
SUSE-SU-2017:0181-1
SUSE-SU-2017:0333-1
SUSE-SU-2017:0407-1
SUSE-SU-2017:0437-1
SUSE-SU-2017:0464-1
SUSE-SU-2017:0471-1
SUSE-SU-2017:0494-1
SUSE-SU-2017:1102-1
SUSE-SU-2017_0181-1
SUSE-SU-2017_0333-1
SUSE-SU-2017_0437-1
SUSE-SU-2017_0464-1
SUSE-SU-2017_0471-1
SUSE-SU-2017_0494-1
USN-3168-1
USN-3168-2
USN-3169-1
USN-3169-2
USN-3169-3
USN-3169-4
USN-3170-1
USN-3170-2

Affected Products

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu