CVE-2016-8633

Опубликовано: 06 нояб. 2016

Источник: redhat

CVSS3: 6.8

CVSS2: 5.9

EPSS Низкий

Описание

drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain unusual hardware configurations, allows remote attackers to execute arbitrary code via crafted fragmented packets.

A buffer overflow vulnerability due to a lack of input filtering of incoming fragmented datagrams was found in the IP-over-1394 driver [firewire-net] in a fragment handling code in the Linux kernel. The vulnerability exists since firewire supported IPv4, i.e. since version 2.6.31 (year 2009) till version v4.9-rc4. A maliciously formed fragment with a respectively large datagram offset would cause a memcpy() past the datagram buffer, which would cause a system panic or possible arbitrary code execution. The flaw requires [firewire-net] module to be loaded and is remotely exploitable from connected firewire devices, but not over a local network.

Отчет

This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7 and MRG 2.x. This issue has been rated as having Moderate security impact. Future Linux kernel updates for the respective releases might address this issue.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Will not fix
Red Hat Enterprise Linux 7	kernel-rt	Fixed	RHSA-2018:0676	10.04.2018
Red Hat Enterprise Linux 7	kernel	Fixed	RHSA-2018:1062	10.04.2018
Red Hat Enterprise Linux 7.4 Extended Update Support	kernel	Fixed	RHSA-2019:1170	14.05.2019
Red Hat Enterprise MRG 2	kernel-rt	Fixed	RHSA-2019:1190	14.05.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=1391490kernel: Buffer overflow in firewire driver via crafted incoming packets

EPSS

Процентиль: 76%

0.01029

Низкий

6.8 Medium

CVSS3

5.9 Medium

CVSS2

Связанные уязвимости

CVE-2016-8633

CVSS3: 6.8

ubuntu

больше 8 лет назад

drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain unusual hardware configurations, allows remote attackers to execute arbitrary code via crafted fragmented packets.

CVE-2016-8633

CVSS3: 6.8

nvd

больше 8 лет назад

drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain unusual hardware configurations, allows remote attackers to execute arbitrary code via crafted fragmented packets.

CVE-2016-8633

CVSS3: 6.8

debian

больше 8 лет назад

drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain un ...

GHSA-98p8-g74r-rjv3

CVSS3: 6.8

github

около 3 лет назад

drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain unusual hardware configurations, allows remote attackers to execute arbitrary code via crafted fragmented packets.

ELSA-2017-3535

oracle-oval

около 8 лет назад

ELSA-2017-3535: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 76%

0.01029

Низкий

6.8 Medium

CVSS3

5.9 Medium

CVSS2