Published: 03/07/2016 Updated: 12/02/2023

CVSS v2 Base Score: 5.6 | Impact Score: 7.8 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8

VMScore: 498

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:C

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel prior to 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
oracle linux 7
canonical ubuntu linux 12.04
canonical ubuntu linux 16.04
canonical ubuntu linux 15.10
canonical ubuntu linux 14.04

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) b ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise MRG 25Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2015-7515, CVE-2016-2184, CVE-2016-2185, CVE-2016-2186, CVE-2016-2187, CVE-2016-3136, CVE-2016-3137, CVE-2016-3138, CVE-2016-3140 Ralf Spenneberg of OpenSource Sec ...

A flaw was discovered in processing setsockopt for 32 bit processes on 64 bit systems This flaw will allow attackers to alter arbitary kernel memory when unloading a kernel module This action is usually restricted to root-priveledged users but can also be leveraged if the kernel is compiled with CONFIG_USER_NS and CONFIG_NET_NS (CVE-2016-4997 ...

An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt() The function call is normally restricted to root, however some processes with cap_sys_admin may also be able to trigger this flaw in privileged container environments ...

Several security issues were fixed in the kernel ...

Get Started

CVE-2016-4998

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect