Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2016-8646
HistoryNov 28, 2016 - 12:00 a.m.

CVE-2016-8646

2016-11-2800:00:00
ubuntu.com
ubuntu.com
10

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The hash_accept function in crypto/algif_hash.c in the Linux kernel before
4.3.6 allows local users to cause a denial of service (OOPS) by attempting
to trigger use of in-kernel hash algorithms for a socket that has received
zero bytes of data.

Notes

Author Note
jdstrand android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-98.138UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-77.121UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1661.85UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-77.121~precise1UNKNOWN
ubuntu14.04noarchlinux-lts-vivid< 3.19.0-49.55~14.04.1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1476.99UNKNOWN

Related

prion 1
debiancve 1
redhatcve 1
cve 1
veracode 1
nessus 26
redhat 3
oraclelinux 6
openvas 6
centos 1
virtuozzo 2
suse 6
ibm 2
prion
prion
Design/Logic Flaw
2016-11-28 03:59:00
debiancve
debiancve
CVE-2016-8646
2016-11-28 03:59:00
redhatcve
redhatcve
CVE-2016-8646
2016-11-15 02:47:14
cve
cve
CVE-2016-8646
2016-11-28 03:59:00
veracode
veracode
NULL Pointer Dereference
2019-05-02 06:11:33
nessus
nessus
RHEL 6 : MRG (RHSA-2017:1297)
2017-05-26 00:00:00
RHEL 7 : kernel-rt (RHSA-2017:1298)
2017-05-26 00:00:00
OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0040)
2017-02-13 00:00:00
redhat
redhat
(RHSA-2017:1297) Important: kernel-rt security and bug fix update
2017-05-25 13:15:44
(RHSA-2017:1298) Important: kernel-rt security and bug fix update
2017-05-25 13:21:34
(RHSA-2017:1308) Important: kernel security, bug fix, and enhancement update
2017-05-25 13:27:24
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2017-02-09 00:00:00
Unbreakable Enterprise kernel security update
2017-02-09 00:00:00
kernel security, bug fix, and enhancement update
2017-05-26 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2017:1308-01
2017-05-26 00:00:00
CentOS Update for kernel CESA-2017:1308 centos7
2017-05-26 00:00:00
openSUSE: Security Advisory for kernel (openSUSE-SU-2016:3061-1)
2016-12-09 00:00:00
centos
centos
kernel, perf, python security update
2017-05-26 02:33:51
virtuozzo
virtuozzo
Kernel security update: CVE-2017-9077 and other; Virtuozzo ReadyKernel patch 22.0 for Virtuozzo 7.0.1
2017-06-02 00:00:00
Important kernel security update: CVE-2017-7645 and other; Virtuozzo ReadyKernel patch 22.0 for Virtuozzo 7.0.0
2017-06-02 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2016-12-08 20:06:50
Security update for the Linux Kernel (important)
2016-12-08 15:07:13
Security update for the Linux Kernel (important)
2017-02-09 21:08:33
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel
2018-06-16 22:02:59
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:38:07

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON
Related for UB:CVE-2016-8646
prion1debiancve1redhatcve1cve1veracode1nessus26redhat3oraclelinux6openvas6centos1virtuozzo2suse6ibm2