CVE-2016-4998 in Androidinformación

Resumen (Inglés)

The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

2016-05-24

Divulgación

2016-07-03

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
91465	Google Android Kernel Networking desbordamiento de búfer	119	No está definido	Arreglo oficial	CVE-2016-4998
88552	Linux Kernel Netfilter desbordamiento de búfer	119	No está definido	Arreglo oficial	CVE-2016-4998

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!