Lucene search

K

PRIOn knowledge basePRION:CVE-2016-2847

HistoryApr 27, 2016 - 5:59 p.m.

Design/Logic Flaw

2016-04-2717:59:00

PRIOn knowledge base

www.prio-n.com

5

6.2 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

Low

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.1%

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

CPENameOperatorVersion
linux_kernelle4.4.8
suse_linux_enterprise_debuginfoeq11.0 sp4
suse_linux_enterprise_desktopeq12.0 sp1
suse_linux_enterprise_desktopeq12.0
suse_linux_enterprise_live_patchingeq12.0
suse_linux_enterprise_module_for_public_cloudeq12.0
suse_linux_enterprise_real_time_extensioneq11.0 sp4
suse_linux_enterprise_real_time_extensioneq12.0 sp1
suse_linux_enterprise_servereq11.0 sp4
suse_linux_enterprise_servereq12.0

Rows per page:

1-10 of 171

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=759c01142a5d0f364a462346168a56de28a80f52

lists.opensuse.org/opensuse-security-announce/2016-05/msg00060.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

rhn.redhat.com/errata/RHSA-2016-2574.html

rhn.redhat.com/errata/RHSA-2016-2584.html

rhn.redhat.com/errata/RHSA-2017-0217.html

www.debian.org/security/2016/dsa-3503

www.openwall.com/lists/oss-security/2016/03/01/3

www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html

www.securityfocus.com/bid/83870

www.ubuntu.com/usn/USN-2946-1

www.ubuntu.com/usn/USN-2946-2

www.ubuntu.com/usn/USN-2947-1

www.ubuntu.com/usn/USN-2947-2

www.ubuntu.com/usn/USN-2947-3

www.ubuntu.com/usn/USN-2948-1

www.ubuntu.com/usn/USN-2948-2

www.ubuntu.com/usn/USN-2949-1

www.ubuntu.com/usn/USN-2967-1

www.ubuntu.com/usn/USN-2967-2

bugzilla.redhat.com/show_bug.cgi?id=1313428

github.com/torvalds/linux/commit/759c01142a5d0f364a462346168a56de28a80f52

6.2 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

Low

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.1%

Related for PRION:CVE-2016-2847

fedora2 debiancve1 cve1 ubuntucve1 nessus34 openvas27 redhat3 cloudfoundry1 amazon1 ubuntu11 ibm5 suse11 oraclelinux2 osv1 centos1 lenovo1