Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.4
CVSSv3

CVE-2016-6516

Published: 06/08/2016 Updated: 28/11/2016
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
CVSS v3 Base Score: 7.4 | Impact Score: 5.9 | Exploitability Score: 1.4
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Race condition in the ioctl_file_dedupe_range function in fs/ioctl.c in the Linux kernel up to and including 4.7 allows local users to cause a denial of service (heap-based buffer overflow) or possibly gain privileges by changing a certain count value, aka a "double fetch" vulnerability.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Github Repositories

https://github.com/wpengfei/CVE-2016-6516-exploit

An demonstration of how to exploit double-fetch vulnerability CVE-2016-6516

CVE-2016-6516-exploit

References

CWE-119CWE-362https://github.com/torvalds/linux/commit/10eec60ce79187686e052092e5383c99b4420a20http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=10eec60ce79187686e052092e5383c99b4420a20http://www.openwall.com/lists/oss-security/2016/07/31/6https://bugzilla.redhat.com/show_bug.cgi?id=1362457http://www.securityfocus.com/bid/92259https://nvd.nist.govhttps://github.com/wpengfei/CVE-2016-6516-exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook