Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-7917

Опубликовано: 02 фев. 2016
Источник: redhat
CVSS3: 5
CVSS2: 4.3
EPSS Низкий

Описание

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

The nfnetlink_rcv_batch() function in 'net/netfilter/nfnetlink.c' in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

Отчет

This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG-2 as code with the flaw is not present in the products listed.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise MRG 2realtime-kernelNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-125->CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=1406358kernel: netfilter: nfnetlink: correctly validate length of batch messages

EPSS

Процентиль: 38%
0.00162
Низкий

5 Medium

CVSS3

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-7917

CVSS3: 5
ubuntu
больше 8 лет назад

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

nvd логотип

CVE-2016-7917

CVSS3: 5
nvd
больше 8 лет назад

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

debian логотип

CVE-2016-7917

CVSS3: 5
debian
больше 8 лет назад

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the L ...

github логотип

GHSA-8jgg-fm67-jxqm

CVSS3: 5
github
около 3 лет назад

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

oracle-oval логотип

ELSA-2020-5912

oracle-oval
больше 4 лет назад

ELSA-2020-5912: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 38%
0.00162
Низкий

5 Medium

CVSS3

4.3 Medium

CVSS2