7.8

CVE-2016-4951

The tipc_nl_publ_dump function in net/tipc/socket.c in the Linux kernel through 4.6 does not verify socket existence, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a dumpit operation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.19 < 4.1.28
LinuxLinux Kernel Version >= 4.2 < 4.4.14
LinuxLinux Kernel Version >= 4.5 < 4.6.3
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version15.10
CanonicalUbuntu Linux Version16.04 SwEditionlts
OracleLinux Version6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.52% 0.396
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html
Third Party Advisory
Mailing List
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
Third Party Advisory
http://www.ubuntu.com/usn/USN-3016-1
Third Party Advisory
http://www.ubuntu.com/usn/USN-3016-2
Third Party Advisory
http://www.ubuntu.com/usn/USN-3016-3
Third Party Advisory
http://www.ubuntu.com/usn/USN-3016-4
Third Party Advisory
http://www.ubuntu.com/usn/USN-3017-1
Third Party Advisory
http://www.ubuntu.com/usn/USN-3017-2
Third Party Advisory
http://www.ubuntu.com/usn/USN-3017-3
Third Party Advisory
http://www.ubuntu.com/usn/USN-3020-1
Third Party Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=45e093ae2830cd1264677d47ff9a95a71f5d9f9c
Vendor Advisory
http://lists.openwall.net/netdev/2016/05/14/28
Patch
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2016/05/21/2
Third Party Advisory
Mailing List
https://github.com/torvalds/linux/commit/45e093ae2830cd1264677d47ff9a95a71f5d9f9c
Vendor Advisory