Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-4998

Опубликовано: 24 июн. 2016
Источник: redhat
CVSS3: 6.1
CVSS2: 5.6
EPSS Низкий

Описание

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt(). The function call is normally restricted to root, however some processes with cap_sys_admin may also be able to trigger this flaw in privileged container environments.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelFixedRHSA-2017:003610.01.2017
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2016:187515.09.2016
Red Hat Enterprise Linux 7kernelFixedRHSA-2016:184715.09.2016
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2016:188314.09.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=1349886kernel: out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt

EPSS

Процентиль: 78%
0.01237
Низкий

6.1 Medium

CVSS3

5.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-4998

CVSS3: 7.1
ubuntu
почти 9 лет назад

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

nvd логотип

CVE-2016-4998

CVSS3: 7.1
nvd
почти 9 лет назад

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

debian логотип

CVE-2016-4998

CVSS3: 7.1
debian
почти 9 лет назад

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subs ...

github логотип

GHSA-j87m-7c2j-m929

CVSS3: 7.1
github
около 3 лет назад

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

oracle-oval логотип

ELSA-2016-3619

oracle-oval
почти 9 лет назад

ELSA-2016-3619: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 78%
0.01237
Низкий

6.1 Medium

CVSS3

5.6 Medium

CVSS2