Lucene search

K
f5F5F5:K90803619
HistoryMar 28, 2017 - 12:00 a.m.

K90803619 : Linux kernel vulnerability CVE-2016-6136

2017-03-2800:00:00
my.f5.com
32

5.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

Security Advisory Description

Race condition in the audit_log_single_execve_arg function in kernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set restrictions or disrupt system-call auditing by changing a certain string, aka a “double fetch” vulnerability. (CVE-2016-6136)

Impact

Locally authenticated users may be able to bypass audit restrictions resulting in the disclosure of local information.