vulnerability
Oracle Linux: (CVE-2016-4913) (Multiple Advisories): kernel security, bug fix, and enhancement update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | 2016-05-23 | 2017-07-01 | 2024-08-06 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
2016-05-23
Added
2017-07-01
Modified
2024-08-06
Description
The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.
Solution(s)
oracle-linux-upgrade-dtrace-modulesoracle-linux-upgrade-kerneloracle-linux-upgrade-kernel-uekoracle-linux-upgrade-kernel-uek-debugoracle-linux-upgrade-kernel-uek-debug-develoracle-linux-upgrade-kernel-uek-develoracle-linux-upgrade-kernel-uek-docoracle-linux-upgrade-kernel-uek-firmware
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.