Published: 27/06/2016 Updated: 22/04/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel up to and including 4.6.3 does not initialize a certain structure member, which allows remote malicious users to obtain sensitive information from kernel stack memory by reading an RDS message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
fedoraproject fedora 23
suse linux enterprise real time extension 11
fedoraproject fedora 24
suse linux enterprise debuginfo 11
suse linux enterprise real time extension 12
suse linux enterprise server 11
redhat enterprise linux 6.0
suse suse linux enterprise software development kit 11
suse linux enterprise workstation extension 12
redhat enterprise linux 5
suse linux enterprise desktop 12
suse opensuse leap 42.1
suse suse linux enterprise software development kit 12
fedoraproject fedora 22
linux linux kernel
suse suse linux enterprise server 12

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2015-7515, CVE-2016-2184, CVE-2016-2185, CVE-2016-2186, CVE-2016-2187, CVE-2016-3136, CVE-2016-3137, CVE-2016-3138, CVE-2016-3140 Ralf Spenneberg of OpenSource Sec ...

It was found that nfsd is missing permissions check when setting ACL on files, this may allow a local users to gain access to any file by setting a crafted ACL (CVE-2016-1237) A flaw was found in the Linux kernel's keyring handling code, where in key_reject_and_link() an uninitialised variable would eventually lead to arbitrary free address which ...

Several security issues were fixed in the kernel ...

A vulnerability was found in the Linux kernel in function rds_inc_info_copy of file net/rds/recvc The last field "flags" of object "minfo" is not initialized This can leak data previously at the flags location to userspace ...

CWE-200 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4116def2337991b39919f3b448326e21c40e0dbb https://patchwork.ozlabs.org/patch/629110/https://github.com/torvalds/linux/commit/4116def2337991b39919f3b448326e21c40e0dbb https://bugzilla.redhat.com/show_bug.cgi?id=1343337 http://www.openwall.com/lists/oss-security/2016/06/03/5 http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html http://www.ubuntu.com/usn/USN-3072-2 http://www.ubuntu.com/usn/USN-3071-1 http://www.ubuntu.com/usn/USN-3072-1 http://www.debian.org/security/2016/dsa-3607 http://www.ubuntu.com/usn/USN-3070-3 http://www.ubuntu.com/usn/USN-3070-4 http://www.securityfocus.com/bid/91021 http://www.ubuntu.com/usn/USN-3070-2 http://www.ubuntu.com/usn/USN-3070-1 http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html http://www.ubuntu.com/usn/USN-3071-2 http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html http://www.securitytracker.com/id/1041895 https://nvd.nist.gov https://www.debian.org/security/./dsa-3607 https://usn.ubuntu.com/3071-2/

CVE-2016-5244

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect