CVE-2016-6213 Ubuntu Security Notification for Linux Vulnerabilities (USN-3162-1)

漏洞类别:Ubuntu

漏洞等级:

漏洞信息

It was discovered that shared bind mounts in a mount namespace exponentially added entries without restriction to the Linux kernel’s mount table.

It was discovered that the KVM implementation for x86/x86_64 in the Linux kernel could dereference a null pointer.

It was discovered that the IP over IEEE 1394 (FireWire) implementation in the Linux kernel contained a buffer overflow when handling fragmented packets.

It was discovered that the TCP implementation in the Linux kernel mishandles socket buffer (skb) truncation.

It was discovered that the keyring implementation in the Linux kernel improperly handled crypto registration in conjunction with successful key- type registration.

It was discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data.

漏洞危害

A local attacker could use this to cause a denial of service (system crash). (CVE-2016-6213)

An attacker in a guest virtual machine could use this to cause a denial of service (system crash) in the KVM host. (CVE-2016-8630)

A remote attacker could use this to possibly execute arbitrary code with administrative privileges. (CVE-2016-8633)

A local attacker could use this to cause a denial of service (system crash). (CVE-2016-8645)

A local attacker could use this to cause a denial of service (system crash). (CVE-2016-9313)

A remote attacker could use this to cause a denial of service (system crash). (CVE-2016-9555)

Leave a Reply