9.3

CVE-2016-7910

Exploit
Use-after-free vulnerability in the disk_seqf_stop function in block/genhd.c in the Linux kernel before 4.7.1 allows local users to gain privileges by leveraging the execution of a certain stop operation even if the corresponding start operation had failed.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 3.2.84
LinuxLinux Kernel Version >= 3.3 < 3.10.103
LinuxLinux Kernel Version >= 3.11 < 3.12.63
LinuxLinux Kernel Version >= 3.13 < 3.14.76
LinuxLinux Kernel Version >= 3.15 < 3.16.39
LinuxLinux Kernel Version >= 3.17 < 3.18.40
LinuxLinux Kernel Version >= 3.19 < 4.1.31
LinuxLinux Kernel Version >= 4.2 < 4.4.18
LinuxLinux Kernel Version >= 4.5 < 4.6.7
LinuxLinux Kernel Version >= 4.7 < 4.7.1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.97% 0.855
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

http://www.securityfocus.com/bid/94135
Third Party Advisory
VDB Entry
http://source.android.com/security/bulletin/2016-11-01.html
Third Party Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=77da160530dd1dc94f6ae15a981f24e5f0021e84
Patch
Vendor Advisory
Exploit
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.7.1
Release Notes
https://access.redhat.com/errata/RHSA-2017:0892
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:1297
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:1298
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:1308
Third Party Advisory
https://github.com/torvalds/linux/commit/77da160530dd1dc94f6ae15a981f24e5f0021e84
Patch
Vendor Advisory
Exploit