CVE-2016-7117

 

Published at: - 10-10-2016 01:00

Last modified: - 19-01-2023 05:13

Total changes: - 4

Description

Use-after-free vulnerability in the __sys_recvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b88a68f26a75e4fded796f1a49c40f82234b7d
• https://bugzilla.redhat.com/show_bug.cgi?id=1382268
• https://bugzilla.novell.com/show_bug.cgi?id=1003077
• https://github.com/torvalds/linux/commit/34b88a68f26a75e4fded796f1a49c40f82234b7d
• https://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-7117.html
• http://source.android.com/security/bulletin/2016-10-01.html
• http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.2
• https://security-tracker.debian.org/tracker/CVE-2016-7117
• 93304-Third Party Advisory, VDB Entry
• RHSA-2016:2962-Third Party Advisory
• RHSA-2017:0270-Third Party Advisory
• RHSA-2017:0217-Third Party Advisory
• RHSA-2017:0216-Third Party Advisory
• RHSA-2017:0215-Third Party Advisory
• RHSA-2017:0196-Third Party Advisory
• RHSA-2017:0113-Third Party Advisory
• RHSA-2017:0091-Third Party Advisory
• RHSA-2017:0086-Third Party Advisory
• RHSA-2017:0065-Third Party Advisory
• RHSA-2017:0036-Third Party Advisory
• RHSA-2017:0031-Third Party Advisory

 

Keywords

NVD

 

CVE-2016-7117

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures