Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-10906

Опубликовано: 18 авг. 2019
Источник: redhat
CVSS3: 7
EPSS Низкий

Описание

An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.

A use-after-free flaw was found in the Ethernet subsystem of the Linux kernel. A race condition was observed while a data transmission from a buffer occurred when the buffer was already freed causing a use-after-free problem.

Отчет

The affected code was not introduced into any kernel versions shipped with Red Hat Enterprise Linux making this vulnerable not applicable to these platforms.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-altNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise MRG 2kernelNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1757380kernel: use-after-free in functions arc_emac_tx and arc_emac_tx_clean in drivers/net/ethernet/arc/emac_main.c

EPSS

Процентиль: 21%
0.00067
Низкий

7 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2016-10906

CVSS3: 7
ubuntu
почти 6 лет назад

An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.

nvd логотип

CVE-2016-10906

CVSS3: 7
nvd
почти 6 лет назад

An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.

debian логотип

CVE-2016-10906

CVSS3: 7
debian
почти 6 лет назад

An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the ...

github логотип

GHSA-53qj-r27x-693f

CVSS3: 7
github
около 3 лет назад

An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.

oracle-oval логотип

ELSA-2020-5866

oracle-oval
больше 4 лет назад

ELSA-2020-5866: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 21%
0.00067
Низкий

7 High

CVSS3