Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-1583

Опубликовано: 10 июн. 2016
Источник: redhat
CVSS3: 8.1
CVSS2: 6.9
EPSS Низкий

Описание

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

It was found that stacking a file system over procfs in the Linux kernel could lead to a kernel stack overflow due to deep nesting, as demonstrated by mounting ecryptfs over procfs and creating a recursion by mapping /proc/environ. An unprivileged, local user could potentially use this flaw to escalate their privileges on the system.

Отчет

This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 5 and 6 and may addressed in a future update.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtAffected
Red Hat Enterprise MRG 2realtime-kernelAffected
Red Hat Enterprise Linux 5kernelFixedRHSA-2016:212428.10.2016
Red Hat Enterprise Linux 6kernelFixedRHSA-2016:276615.11.2016
Red Hat Enterprise Linux 6.7 Extended Update SupportkernelFixedRHSA-2017:276019.09.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-121
https://bugzilla.redhat.com/show_bug.cgi?id=1344721kernel: Stack overflow via ecryptfs and /proc/$pid/environ

EPSS

Процентиль: 52%
0.00288
Низкий

8.1 High

CVSS3

6.9 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-1583

CVSS3: 7.8
ubuntu
почти 9 лет назад

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

nvd логотип

CVE-2016-1583

CVSS3: 7.8
nvd
почти 9 лет назад

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

debian логотип

CVE-2016-1583

CVSS3: 7.8
debian
почти 9 лет назад

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the ...

suse-cvrf логотип

SUSE-SU-2016:1596-1

suse-cvrf
около 9 лет назад

Security update for the Linux Kernel

github логотип

GHSA-hgx4-cgxm-99gj

CVSS3: 7.8
github
около 3 лет назад

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

EPSS

Процентиль: 52%
0.00288
Низкий

8.1 High

CVSS3

6.9 Medium

CVSS2