Lucene search

K
ubuntucveUbuntu.comUB:CVE-2016-8646
HistoryNov 28, 2016 - 12:00 a.m.

CVE-2016-8646

2016-11-2800:00:00
ubuntu.com
ubuntu.com
17
linux kernel
cve-2016-8646
denial of service
hash algorithms
in-kernel
zero bytes
data

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

The hash_accept function in crypto/algif_hash.c in the Linux kernel before
4.3.6 allows local users to cause a denial of service (OOPS) by attempting
to trigger use of in-kernel hash algorithms for a socket that has received
zero bytes of data.

Notes

Author Note
jdstrand android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-98.138UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-77.121UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1661.85UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-77.121~precise1UNKNOWN
ubuntu14.04noarchlinux-lts-vivid< 3.19.0-49.55~14.04.1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1476.99UNKNOWN

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%