Multiple Kernel Versions Null Pointer Dereference Local DoS

2016-07-1400:00:00

Tenable

www.tenable.com

JSON

Linux Kernel contains a NULL pointer dereference flaw in the tipc_nl_publ_dump() function in net/tipc/socket.c that is triggered when parsing nested attributes. This may allow a local attacker to crash the system.

Binary data 802008.prm

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4951

lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html

lists.openwall.net/netdev/2016/05/14/28

lists.openwall.net/netdev/2016/05/16/26

pivotal.io/security/usn-3020-1

seclists.org/oss-sec/2016/q2/385

www.ubuntu.com/usn/usn-3016-1/

www.ubuntu.com/usn/usn-3016-2/

www.ubuntu.com/usn/usn-3016-3/

www.ubuntu.com/usn/usn-3016-4/

www.ubuntu.com/usn/usn-3017-1/

www.ubuntu.com/usn/usn-3017-2/

www.ubuntu.com/usn/usn-3017-3/

www.ubuntu.com/usn/usn-3020-1/

JSON