vulnerability
Oracle Linux: (CVE-2016-4913) (Multiple Advisories): kernel security, bug fix, and enhancement update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | May 23, 2016 | Jul 1, 2017 | Aug 6, 2024 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
May 23, 2016
Added
Jul 1, 2017
Modified
Aug 6, 2024
Description
The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.
Solutions
oracle-linux-upgrade-dtrace-modulesoracle-linux-upgrade-kerneloracle-linux-upgrade-kernel-uekoracle-linux-upgrade-kernel-uek-debugoracle-linux-upgrade-kernel-uek-debug-develoracle-linux-upgrade-kernel-uek-develoracle-linux-upgrade-kernel-uek-docoracle-linux-upgrade-kernel-uek-firmware
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.