7.8

CVE-2016-7039

The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a related issue to CVE-2016-8666.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OracleLinux Version6
OracleLinux Version7
OracleVm Server Version3.4
LinuxLinux Kernel Version >= 4.0 < 4.1.37
LinuxLinux Kernel Version >= 4.2 < 4.4.32
LinuxLinux Kernel Version >= 4.5 < 4.8.8
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.61% 0.938
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
Third Party Advisory
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2047.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2107.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2110.html
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/10/10/15
Patch
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/93476
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2017:0372
Third Party Advisory
https://bto.bluecoat.com/security-advisory/sa134
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1375944
Third Party Advisory
Issue Tracking
https://patchwork.ozlabs.org/patch/680412/
Patch
Issue Tracking