kernel: Race condition vulnerability in execve argv arguments

🗓️ 03 Nov 2016 08:08:49Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 2 Views

Race condition in execve argv arguments could corrupt audit records and evade command logging.

Reporter	Title	Published	Views	Family All 155
IBM Security Bulletins	Security Bulletin: IBM Security Access Manager version 9.0.3.0 appliances are affected by multiple kernel vulnerabilities	16 Jun 201822:03	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM	18 Jun 201801:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities in Linux Kernel	16 Jun 201822:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products	29 Mar 202301:48	–	ibm
Tenable Nessus	CentOS 7 : kernel (CESA-2016:2574)	28 Nov 201600:00	–	nessus
Tenable Nessus	CentOS 6 : kernel (CESA-2017:0307)	27 Feb 201700:00	–	nessus
Tenable Nessus	Debian DLA-609-1 : linux security update	6 Sep 201600:00	–	nessus
Tenable Nessus	Debian DSA-3659-1 : linux - security update	6 Sep 201600:00	–	nessus
Tenable Nessus	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1494)	15 May 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1538)	14 May 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	x86_64	kernel-rt	0:3.10.0-514.rt56.420.el7	kernel-rt-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug	0:3.10.0-514.rt56.420.el7	kernel-rt-debug-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-debuginfo	0:3.10.0-514.rt56.420.el7	kernel-rt-debug-debuginfo-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-devel	0:3.10.0-514.rt56.420.el7	kernel-rt-debug-devel-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm	0:3.10.0-514.rt56.420.el7	kernel-rt-debug-kvm-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debug-kvm-debuginfo	0:3.10.0-514.rt56.420.el7	kernel-rt-debug-kvm-debuginfo-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo	0:3.10.0-514.rt56.420.el7	kernel-rt-debuginfo-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-debuginfo-common-x86_64	0:3.10.0-514.rt56.420.el7	kernel-rt-debuginfo-common-x86_64-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	x86_64	kernel-rt-devel	0:3.10.0-514.rt56.420.el7	kernel-rt-devel-0:3.10.0-514.rt56.420.el7.x86_64.rpm
Red Hat Enterprise Linux	7	any	kernel-rt-doc	0:3.10.0-514.rt56.420.el7.noarch	kernel-rt-doc-0:3.10.0-514.rt56.420.el7.noarch.noarch.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2016-6136
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-6136
cve	www.cve.org/CVERecord

13 May 2026 01:18Current

6.7Medium risk

Vulners AI Score6.7

CVSS 21.9

CVSS 34.7

EPSS0.00034

kernel vulnerability race condition execve arguments audit records attackers command logging evasion command execution