CVE-2016-4997 in Kernel
요약 (영어)
The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
예약하다
2016. 05. 24.
공개
2016. 07. 03.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 88138 | Linux Kernel setsockopt 권한 상승 | 264 | 높음 | 공식 수정 | CVE-2016-4997 |
| 88137 | Linux Kernel compat_setsockopt 권한 상승 | 264 | 높음 | 공식 수정 | CVE-2016-4997 |