vulnerability
SUSE: CVE-2016-3841: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Aug 6, 2016 | Dec 3, 2016 | Jun 21, 2018 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Aug 6, 2016
Added
Dec 3, 2016
Modified
Jun 21, 2018
Description
The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or cause a denial of service (use-after-free and system crash) via a crafted sendmsg system call.
Solutions
suse-upgrade-kernel-defaultsuse-upgrade-kernel-docs
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.