4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
kernel is vulnerable to denial of service. A flaw was found in the way the Linux kernel’s ext4 file system driver handled non-journal file systems with an orphan list. An attacker with physical access to the system could use this flaw to crash the system or, although unlikely, escalate their privileges on the system.
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c9b92530a723ac5ef8e352885a1862b18f31b2f5
lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html
lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html
lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html
rhn.redhat.com/errata/RHSA-2016-0855.html
www.securitytracker.com/id/1034559
access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/6.8_Release_Notes/index.html
access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/6.8_Technical_Notes/index.html
access.redhat.com/errata/RHSA-2016:0855
access.redhat.com/security/cve/CVE-2015-7509
access.redhat.com/security/cve/CVE-2016-3841
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1066751
bugzilla.redhat.com/show_bug.cgi?id=1197875
bugzilla.redhat.com/show_bug.cgi?id=1225359
bugzilla.redhat.com/show_bug.cgi?id=1242239
bugzilla.redhat.com/show_bug.cgi?id=1248507
bugzilla.redhat.com/show_bug.cgi?id=1254020
bugzilla.redhat.com/show_bug.cgi?id=1259222
bugzilla.redhat.com/show_bug.cgi?id=1259870
bugzilla.redhat.com/show_bug.cgi?id=1310661
bugzilla.redhat.com/show_bug.cgi?id=697750
bugzilla.redhat.com/show_bug.cgi?id=723722
bugzilla.redhat.com/show_bug.cgi?id=889368
bugzilla.suse.com/show_bug.cgi?id=956709
github.com/torvalds/linux/commit/c9b92530a723ac5ef8e352885a1862b18f31b2f5
rhn.redhat.com/errata/RHSA-2016-0855.html
security-tracker.debian.org/tracker/CVE-2015-7509
4.4 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C