Lucene search

K
f5F5F5:K05513373
HistoryJan 27, 2017 - 12:00 a.m.

K05513373 : Linux kernel vulnerability CVE-2016-9576

2017-01-2700:00:00
my.f5.com
28

AI Score

7

Confidence

High

EPSS

0

Percentile

10.1%

Security Advisory Description

The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device. (CVE-2016-9576)

Impact

This vulnerability may allow locally authenticated users to read or write to arbitrary kernel memory locations or cause a denial of service (DoS).

Note: The exploit requires local shell access and can provide a user with root access to the system. On BIG-IP systems, shell access includes root privileges, making this exploit unnecessary.