vulnerability

VMware Photon OS: CVE-2016-9191

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:N/I:N/A:C)	Nov 28, 2016	Jan 20, 2025	Mar 25, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:C)

Published

Nov 28, 2016

Added

Jan 20, 2025

Modified

Mar 25, 2026

Description

The cgroup offline implementation in the Linux kernel through 4.8.11 mishandles certain drain operations, which allows local users to cause a denial of service (system hang) by leveraging access to a container environment for executing a crafted application, as demonstrated by trinity.

Solution

vmware-photon_os_update_tdnf

References

CVE-2016-9191
https://attackerkb.com/topics/CVE-2016-9191
CWE-20
EUVD-EUVD-2016-10003
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-10003

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report