vulnerability
SUSE: CVE-2016-4998: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:N/C:P/I:N/A:C) | Jun 30, 2016 | Dec 9, 2016 | Feb 4, 2022 |
Severity
6
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:C)
Published
Jun 30, 2016
Added
Dec 9, 2016
Modified
Feb 4, 2022
Description
The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.
Solution(s)
suse-upgrade-cluster-md-kmp-defaultsuse-upgrade-cluster-network-kmp-defaultsuse-upgrade-dlm-kmp-defaultsuse-upgrade-gfs2-kmp-defaultsuse-upgrade-kernel-defaultsuse-upgrade-kernel-docssuse-upgrade-kernel-obs-buildsuse-upgrade-ocfs2-kmp-default
References
- SUSE-SUSE-SU-2016:1709-1
- SUSE-SUSE-SU-2016:1710-1
- SUSE-SUSE-SU-2016:2105-1
- SUSE-SUSE-SU-2016:2245-1
- SUSE-SUSE-SU-2016:2976-1
- SUSE-SUSE-SU-2016:3069-1
- SUSE-SUSE-SU-2016:3304-1
- SUSE-SUSE-SU-2017:0333-1
- SUSE-SUSE-SU-2017:0471-1
- SUSE-SUSE-SU-2017:1990-1
- SUSE-SUSE-SU-2017:2342-1
- DEBIAN-DSA-3607
- UBUNTU-USN-3016-1
- UBUNTU-USN-3016-2
- UBUNTU-USN-3016-3
- UBUNTU-USN-3016-4
- UBUNTU-USN-3017-1
- UBUNTU-USN-3017-2
- UBUNTU-USN-3017-3
- UBUNTU-USN-3018-1
- UBUNTU-USN-3018-2
- UBUNTU-USN-3019-1
- UBUNTU-USN-3020-1
- NVD-CVE-2016-4998
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.