Published: 28/12/2016 Updated: 07/06/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 617

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

kernel/events/core.c in the performance subsystem in the Linux kernel prior to 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka Android internal bug 31095224.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts CVE-2016-6786 / CVE-2016-6787 It was discovered that the performance events subsystem does not properly manage locks during certain migrations, allowing a local attacker to escalate privileg ...

kernel/events/corec in the performance subsystem in the Linux kernel before 40 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka Android internal bug 31095224 ...

CWE-264 https://github.com/torvalds/linux/commit/f63a8daa5812afef4f06c962351687e1ff9ccb2b https://bugzilla.redhat.com/show_bug.cgi?id=1403842 http://source.android.com/security/bulletin/2016-12-01.html http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f63a8daa5812afef4f06c962351687e1ff9ccb2b http://www.securityfocus.com/bid/94679 http://www.debian.org/security/2017/dsa-3791 https://nvd.nist.gov https://www.debian.org/security/./dsa-3791

CVE-2016-6787

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect