vulnerability

F5: CVE-2016-6828: K62442245: Kernel vulnerability CVE-2016-6828

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:C)

Published

Dec 21, 2016

Added

Jun 17, 2026

Modified

Jun 17, 2026

Description

The tcp_check_send_head function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service (tcp_xmit_retransmit_queue use-after-free and system crash) via a crafted SACK option.

Solution

f5-bigip-upgrade-latest

References

CVE-2016-6828
https://attackerkb.com/topics/CVE-2016-6828
https://my.f5.com/manage/s/article/K62442245
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-7713
CWE-416
EUVD-EUVD-2016-7713

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report