CVE-2016-5195
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.879 High
EPSS
Percentile
98.6%
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka “Dirty COW.”
References
fortiguard.com/advisory/FG-IR-16-063
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619
kb.juniper.net/InfoCenter/index?page=content&id=JSA10770
kb.juniper.net/InfoCenter/index?page=content&id=JSA10774
kb.juniper.net/InfoCenter/index?page=content&id=JSA10807
lists.opensuse.org/opensuse-security-announce/2016-10/msg00034.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00035.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00036.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00038.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00039.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00040.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00045.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00048.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00049.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00050.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00051.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00052.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00053.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00054.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00055.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00056.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00057.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00058.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00063.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00064.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00065.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00066.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00067.html
lists.opensuse.org/opensuse-security-announce/2016-10/msg00072.html
lists.opensuse.org/opensuse-security-announce/2016-12/msg00033.html
lists.opensuse.org/opensuse-security-announce/2016-12/msg00100.html
lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html
packetstormsecurity.com/files/139277/Kernel-Live-Patch-Security-Notice-LSN-0012-1.html
packetstormsecurity.com/files/139286/DirtyCow-Linux-Kernel-Race-Condition.html
packetstormsecurity.com/files/139287/DirtyCow-Local-Root-Proof-Of-Concept.html
packetstormsecurity.com/files/139922/Linux-Kernel-Dirty-COW-PTRACE_POKEDATA-Privilege-Escalation.html
packetstormsecurity.com/files/139923/Linux-Kernel-Dirty-COW-PTRACE_POKEDATA-Privilege-Escalation.html
packetstormsecurity.com/files/142151/Kernel-Live-Patch-Security-Notice-LSN-0021-1.html
rhn.redhat.com/errata/RHSA-2016-2098.html
rhn.redhat.com/errata/RHSA-2016-2105.html
rhn.redhat.com/errata/RHSA-2016-2106.html
rhn.redhat.com/errata/RHSA-2016-2107.html
rhn.redhat.com/errata/RHSA-2016-2110.html
rhn.redhat.com/errata/RHSA-2016-2118.html
rhn.redhat.com/errata/RHSA-2016-2120.html
rhn.redhat.com/errata/RHSA-2016-2124.html
rhn.redhat.com/errata/RHSA-2016-2126.html
rhn.redhat.com/errata/RHSA-2016-2127.html
rhn.redhat.com/errata/RHSA-2016-2128.html
rhn.redhat.com/errata/RHSA-2016-2132.html
rhn.redhat.com/errata/RHSA-2016-2133.html
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-linux
www.debian.org/security/2016/dsa-3696
www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-dirtycow-en
www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.3
www.openwall.com/lists/oss-security/2016/10/21/1
www.openwall.com/lists/oss-security/2016/10/26/7
www.openwall.com/lists/oss-security/2016/10/27/13
www.openwall.com/lists/oss-security/2016/10/30/1
www.openwall.com/lists/oss-security/2016/11/03/7
www.openwall.com/lists/oss-security/2022/03/07/1
www.openwall.com/lists/oss-security/2022/08/08/1
www.openwall.com/lists/oss-security/2022/08/08/2
www.openwall.com/lists/oss-security/2022/08/08/7
www.openwall.com/lists/oss-security/2022/08/08/8
www.openwall.com/lists/oss-security/2022/08/09/4
www.openwall.com/lists/oss-security/2022/08/15/1
www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
www.securityfocus.com/archive/1/539611/100/0/threaded
www.securityfocus.com/archive/1/540252/100/0/threaded
www.securityfocus.com/archive/1/540344/100/0/threaded
www.securityfocus.com/archive/1/540736/100/0/threaded
www.securityfocus.com/archive/1/archive/1/539611/100/0/threaded
www.securityfocus.com/archive/1/archive/1/540252/100/0/threaded
www.securityfocus.com/archive/1/archive/1/540344/100/0/threaded
www.securityfocus.com/archive/1/archive/1/540736/100/0/threaded
www.securityfocus.com/bid/93793
www.securitytracker.com/id/1037078
www.ubuntu.com/usn/USN-3104-1
www.ubuntu.com/usn/USN-3104-2
www.ubuntu.com/usn/USN-3105-1
www.ubuntu.com/usn/USN-3105-2
www.ubuntu.com/usn/USN-3106-1
www.ubuntu.com/usn/USN-3106-2
www.ubuntu.com/usn/USN-3106-3
www.ubuntu.com/usn/USN-3106-4
www.ubuntu.com/usn/USN-3107-1
www.ubuntu.com/usn/USN-3107-2
access.redhat.com/errata/RHSA-2017:0372
access.redhat.com/security/cve/cve-2016-5195
access.redhat.com/security/vulnerabilities/2706661
bto.bluecoat.com/security-advisory/sa134
bugzilla.redhat.com/show_bug.cgi?id=1384344
bugzilla.suse.com/show_bug.cgi?id=1004418
dirtycow.ninja
github.com/dirtycow/dirtycow.github.io/wiki/PoCs
github.com/dirtycow/dirtycow.github.io/wiki/VulnerabilityDetails
github.com/torvalds/linux/commit/19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05352241
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03707en_us
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03722en_us
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03742en_us
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03761en_us
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05341463
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05347541
h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05352241
help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
kc.mcafee.com/corporate/index?page=content&id=SB10176
kc.mcafee.com/corporate/index?page=content&id=SB10177
kc.mcafee.com/corporate/index?page=content&id=SB10222
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E7M62SRP6CZLJ4ZXCRZKV4WPLQBSR7DT/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NWMDLBWMGZKFHMRJ7QUQVCERP5QHDB6W/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3APRVDVPDBXLH4DC5UKZVCR742MJIM3/
people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-5195.html
security-tracker.debian.org/tracker/CVE-2016-5195
security.netapp.com/advisory/ntap-20161025-0001/
security.paloaltonetworks.com/CVE-2016-5195
source.android.com/security/bulletin/2016-11-01.html
source.android.com/security/bulletin/2016-12-01.html
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-vcsd
www.arista.com/en/support/advisories-notices/security-advisories/1753-security-advisory-0026
www.exploit-db.com/exploits/40611/
www.exploit-db.com/exploits/40616/
www.exploit-db.com/exploits/40839/
www.exploit-db.com/exploits/40847/
www.kb.cert.org/vuls/id/243144
Social References
More
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.879 High
EPSS
Percentile
98.6%