Published: 23/05/2016 Updated: 16/02/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Use-after-free vulnerability in mm/percpu.c in the Linux kernel up to and including 4.6 allows local users to cause a denial of service (BUG) or possibly have unspecified other impact via crafted use of the mmap and bpf system calls.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Several security issues were fixed in the kernel ...

Use after free vulnerability was found in percpu using previously allocated memory in bpf First __alloc_percpu_gfp() is called, then the memory is freed with free_percpu() which triggers async pcpu_balance_work and then pcpu_extend_area_map could use a chunk after it has been freed ...

NVD-CWE-Other http://www.openwall.com/lists/oss-security/2016/05/12/6 https://lkml.org/lkml/2016/4/17/125 https://bugzilla.redhat.com/show_bug.cgi?id=1335889 http://www.ubuntu.com/usn/USN-3057-1 http://www.ubuntu.com/usn/USN-3053-1 http://www.ubuntu.com/usn/USN-3056-1 http://www.ubuntu.com/usn/USN-3054-1 http://www.ubuntu.com/usn/USN-3055-1 http://www.securityfocus.com/bid/90625 https://source.android.com/security/bulletin/2016-12-01.html http://rhn.redhat.com/errata/RHSA-2016-2584.html http://rhn.redhat.com/errata/RHSA-2016-2574.html https://access.redhat.com/errata/RHSA-2016:2574 https://nvd.nist.gov https://usn.ubuntu.com/3053-1/

CVE-2016-4794

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect