vulnerability

CentOS Linux: CVE-2016-8645: Important: kernel security, bug fix, and enhancement update (Multiple Advisories)

Severity
5
CVSS
(AV:L/AC:L/Au:N/C:N/I:N/A:C)
Published
Nov 28, 2016
Added
Aug 28, 2019
Modified
May 25, 2023

Description

The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service (system crash) via a crafted application that makes sendto system calls, related to net/ipv4/tcp_ipv4.c and net/ipv6/tcp_ipv6.c.

Solution(s)

centos-upgrade-kernelcentos-upgrade-kernel-rt
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.