Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-8666

Опубликовано: 13 окт. 2016
Источник: redhat
CVSS3: 7.5
CVSS2: 7.1
EPSS Низкий

Описание

The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.

A flaw was found in the way the Linux kernel's networking subsystem handled offloaded packets with multiple layers of encapsulation in the GRO (Generic Receive Offload) code path. A remote attacker could use this flaw to trigger unbounded recursion in the kernel that could lead to stack corruption, resulting in a system crash.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux Extended Update Support 7.2kernelAffected
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2016:211026.10.2016
Red Hat Enterprise Linux 7kernelFixedRHSA-2016:204710.10.2016
Red Hat Enterprise Linux 7kernel-aarch64FixedRHSA-2017:037202.03.2017
Red Hat Enterprise Linux 7.1 Extended Update SupportkernelFixedRHSA-2017:000403.01.2017
Red Hat Enterprise MRG 2kernel-rtFixedRHSA-2016:210726.10.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-674
https://bugzilla.redhat.com/show_bug.cgi?id=1384991kernel: Remotely triggerable recursion in GRE code leading to kernel crash

EPSS

Процентиль: 87%
0.0352
Низкий

7.5 High

CVSS3

7.1 High

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-8666

CVSS3: 7.5
ubuntu
больше 8 лет назад

The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.

nvd логотип

CVE-2016-8666

CVSS3: 7.5
nvd
больше 8 лет назад

The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.

debian логотип

CVE-2016-8666

CVSS3: 7.5
debian
больше 8 лет назад

The IP stack in the Linux kernel before 4.6 allows remote attackers to ...

github логотип

GHSA-59g9-3m7p-ch4f

CVSS3: 7.5
github
около 3 лет назад

The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.

suse-cvrf логотип

SUSE-SU-2016:2674-1

suse-cvrf
больше 8 лет назад

Security update for Linux Kernel Live Patch 8 for SLE 12 SP1

EPSS

Процентиль: 87%
0.0352
Низкий

7.5 High

CVSS3

7.1 High

CVSS2