Lucene search

K
cvelistMitreCVELIST:CVE-2016-9083
HistoryNov 28, 2016 - 3:01 a.m.

CVE-2016-9083

2016-11-2803:01:00
mitre
www.cve.org

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

drivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file for a VFIO_DEVICE_SET_IRQS ioctl call, aka a β€œstate machine confusion bug.”