Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-6828

Опубликовано: 16 окт. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.9
CVSS3: 5.5

Описание

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

РелизСтатусПримечание
devel

not-affected

4.10.0-19.21
esm-infra-legacy/trusty

not-affected

3.13.0-98.145
esm-infra/xenial

not-affected

4.4.0-42.62
precise

released

3.2.0-111.153
precise/esm

not-affected

3.2.0-111.153
trusty

released

3.13.0-98.145
trusty/esm

not-affected

3.13.0-98.145
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

released

3.19.0-71.79

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

released

3.2.0-1674.100
precise/esm

DNE

precise was released [3.2.0-1674.100]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

not-affected

4.4.0-1002.2
esm-infra/xenial

not-affected

4.4.0-1001.10
precise

DNE

precise/esm

DNE

trusty

not-affected

4.4.0-1002.2
trusty/esm

not-affected

4.4.0-1002.2
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

ignored

end of life
vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

not-affected

4.4.0-1003.3

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/xenial

not-affected

4.8.0-36.36~16.04.1
precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/xenial

not-affected

4.8.0-36.36~16.04.1
precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

ignored

end of life, was ignored
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

released

3.13.0-98.145~precise1
precise/esm

not-affected

3.13.0-98.145~precise1
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [end of standard support]]
precise

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [end of standard support]
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [3.19.0-71.79~14.04.1]]
precise

DNE

precise/esm

DNE

trusty

released

3.19.0-71.79~14.04.1
trusty/esm

DNE

trusty was released [3.19.0-71.79~14.04.1]
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [end of standard support]]
precise

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [end of standard support]
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

not-affected

4.4.0-42.62~14.04.1
precise

DNE

precise/esm

DNE

trusty

released

4.4.0-42.62~14.04.1
trusty/esm

not-affected

4.4.0-42.62~14.04.1
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-apps/xenial

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

ignored

end of life
vivid/ubuntu-core

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored]
precise

DNE

precise/esm

DNE

trusty

ignored

trusty/esm

DNE

trusty was ignored
upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

ignored

end of life
precise/esm

DNE

precise was ignored [abandoned]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

4.10.0-1004.6
esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

ignored

end of life, was needed
xenial

released

4.4.0-1027.33

Показывать по

РелизСтатусПримечание
devel

not-affected

4.4.0-1050.54
esm-infra-legacy/trusty

DNE

precise

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

released

4.4.0-1030.33

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

precise

released

3.2.0-1489.116
precise/esm

DNE

precise was released [3.2.0-1489.116]
trusty

DNE

trusty/esm

DNE

upstream

released

4.8~rc5
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 31%
0.00111
Низкий

4.9 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-6828

CVSS3: 4.4
redhat
почти 9 лет назад

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

nvd логотип

CVE-2016-6828

CVSS3: 5.5
nvd
больше 8 лет назад

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

debian логотип

CVE-2016-6828

CVSS3: 5.5
debian
больше 8 лет назад

The tcp_check_send_head function in include/net/tcp.h in the Linux ker ...

github логотип

GHSA-2cwm-q27v-2mv8

CVSS3: 5.5
github
около 3 лет назад

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

oracle-oval логотип

ELSA-2017-0086

oracle-oval
больше 8 лет назад

ELSA-2017-0086: kernel security, bug fix, and enhancement update (IMPORTANT)

EPSS

Процентиль: 31%
0.00111
Низкий

4.9 Medium

CVSS2

5.5 Medium

CVSS3

Уязвимость CVE-2016-6828