CVE-2016-9178

🗓️ 27 Nov 2016 00:00:00Reported by ubuntu.comType

The Linux kernel before 4.7.5 allows local users to obtain sensitive information from kernel stack memory by triggering a failure of a get_user_ex call in __get_user_asm_ex macro

Reporter	Title	Published	Views	Family All 87
CNVD	Linux Kernel Local Information Disclosure Vulnerability (CNVD-2016-11077)	9 Nov 201600:00	–	cnvd
CVE	CVE-2016-9178	28 Nov 201603:01	–	cve
Cvelist	CVE-2016-9178	28 Nov 201603:01	–	cvelist
Debian	[SECURITY] [DLA 772-1] linux security update	1 Jan 201718:24	–	debian
Debian CVE	CVE-2016-9178	28 Nov 201603:01	–	debiancve
Tenable Nessus	Debian DLA-772-1 : linux security update	3 Jan 201700:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1536)	14 May 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : the Linux Kernel (openSUSE-2016-1428)	12 Dec 201600:00	–	nessus
Tenable Nessus	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3533)	3 Apr 201700:00	–	nessus
Tenable Nessus	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3534)	3 Apr 201700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	14.04	any	linux	3.13.0-132.181	linux_3.13.0-132.181_any.deb
Ubuntu	16.04	any	linux	4.4.0-47.68	linux_4.4.0-47.68_any.deb
Ubuntu	14.04	any	linux-lts-xenial	4.4.0-47.68~14.04.1	linux-lts-xenial_4.4.0-47.68~14.04.1_any.deb
Ubuntu	16.04	any	linux-raspi2	4.4.0-1038.45	linux-raspi2_4.4.0-1038.45_any.deb
Ubuntu	16.04	any	linux-snapdragon	4.4.0-1035.39	linux-snapdragon_4.4.0-1035.39_any.deb
Ubuntu	16.10	any	linux-snapdragon	4.4.0-1035.39	linux-snapdragon_4.4.0-1035.39_any.deb

Source	Link
openwall	www.openwall.com/lists/oss-security/2016/11/03/2
ubuntu	www.ubuntu.com/security/notices/USN-3161-3
ubuntu	www.ubuntu.com/security/notices/USN-3422-1
ubuntu	www.ubuntu.com/security/notices/USN-3422-2
cve	www.cve.org/CVERecord

25 Sep 2025 09:02Current

6.8Medium risk

Vulners AI Score6.8

CVSS 22.1

CVSS 35.5

EPSS0.0007