CVE-2016-6831

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions CHICKEN versions prior to 4.12

Description The issue arises from the process-execute and process-spawn procedures not freeing memory correctly when the execve() call fails, leading to a memory leak. This could be exploited by an attacker to cause resource exhaustion or a denial of service.

Recommendations For versions prior to 4.12, update to version 4.12 or 5.0 when available to resolve the issue. As a temporary workaround, consider implementing measures to monitor and limit resource usage to minimize the risk of exploitation.

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

ALT-PU-2019-1853

ALT-PU-2024-13015

CVE-2016-6831

DLA-643-1

Affected Products

Alt Linux

Chicken

CVE-2016-6831

Weakness Enumeration

Related Identifiers

Affected Products

References · 10