CVE-2016-4794

Опубликовано: 17 апр. 2016

Источник: redhat

CVSS2: 7.2

EPSS Низкий

Описание

Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of service (BUG) or possibly have unspecified other impact via crafted use of the mmap and bpf system calls.

Use after free vulnerability was found in percpu using previously allocated memory in bpf. First __alloc_percpu_gfp() is called, then the memory is freed with free_percpu() which triggers async pcpu_balance_work and then pcpu_extend_area_map could use a chunk after it has been freed.

Отчет

This issue does not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4, 5 and 6. This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 7 and MRG-2 and may be addressed in a future update.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-aarch64	Affected
Red Hat Enterprise MRG 2	realtime-kernel	Affected
Red Hat Enterprise Linux 7	kernel-rt	Fixed	RHSA-2016:2584	03.11.2016
Red Hat Enterprise Linux 7	kernel	Fixed	RHSA-2016:2574	03.11.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=1335889kernel: Use after free in array_map_alloc

EPSS

Процентиль: 15%

0.00048

Низкий

7.2 High

CVSS2

Связанные уязвимости

CVE-2016-4794

CVSS3: 7.8

ubuntu

около 9 лет назад

CVE-2016-4794

CVSS3: 7.8

nvd

около 9 лет назад

CVE-2016-4794

CVSS3: 7.8

debian

около 9 лет назад

Use-after-free vulnerability in mm/percpu.c in the Linux kernel throug ...

GHSA-6xwx-g6w8-mw46

CVSS3: 7.8

github

около 3 лет назад

openSUSE-SU-2016:1798-1

suse-cvrf

почти 9 лет назад

Security update for the Linux Kernel

EPSS

Процентиль: 15%

0.00048

Низкий

7.2 High

CVSS2