CVE-2016-9755 in Kernelinfo

Summary

The netfilter subsystem in the Linux kernel before 4.9 mishandles IPv6 reassembly, which allows local users to cause a denial of service (integer overflow, out-of-bounds write, and GPF) or possibly have unspecified other impact via a crafted application that makes socket, connect, and writev system calls, related to net/ipv6/netfilter/nf_conntrack_reasm.c and net/ipv6/netfilter/nf_defrag_ipv6_hooks.c.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/01/2016

Disclosure

12/28/2016

Moderation

VulDB entry created

Entries

VDB-94698 (1)

CPE

ready

CWE

CWE-787 (Confirmed)

CVSS

6.5

EPSS

0.00051

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9755
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9755
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9755/

◂ Previous Overview Next ▸