Home

CVE-2016-8632

Description

The tipc_msg_build function in net/tipc/msg.c in the Linux kernel through 4.8.11 does not validate the relationship between the minimum fragment length and the maximum packet size, which allows local users to gain privileges or cause a denial of service (heap-based buffer overflow) by leveraging the CAP_NET_ADMIN capability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.048

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-3128-1) linux-image-virtual_4.4.0.79.85_i386.debLinux
Linux kernel (USN-3128-1) linux-image-virtual_4.4.0.79.85_amd64.debLinux
Linux kernel (USN-3190-1) linux-image-4.8.0-37-generic_4.8.0-37.39_i386.debLinux
Linux kernel (USN-3190-1) linux-image-4.8.0-37-generic_4.8.0-37.39_amd64.debLinux
Linux kernel (USN-3190-1) linux-image-4.8.0-37-lowlatency_4.8.0-37.39_i386.debLinux
Linux kernel (USN-3190-1) linux-image-4.8.0-37-lowlatency_4.8.0-37.39_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-aws_4.4.0.1018.21_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-gke_4.4.0.1014.16_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-generic_4.4.0.79.85_i386.debLinux
Linux kernel (USN-3312-1) linux-image-generic_4.4.0.79.85_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-virtual_4.4.0.79.85_i386.debLinux
Linux kernel (USN-3312-1) linux-image-virtual_4.4.0.79.85_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-lowlatency_4.4.0.79.85_i386.debLinux
Linux kernel (USN-3312-1) linux-image-lowlatency_4.4.0.79.85_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-1014-gke_4.4.0-1014.14_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-1018-aws_4.4.0-1018.27_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-79-generic_4.4.0-79.100_i386.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-79-generic_4.4.0-79.100_amd64.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-79-lowlatency_4.4.0-79.100_i386.debLinux
Linux kernel (USN-3312-1) linux-image-4.4.0-79-lowlatency_4.4.0-79.100_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-4.4.0-79-generic_4.4.0-79.100~14.04.1_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-4.4.0-79-generic_4.4.0-79.100~14.04.1_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-generic-lts-xenial_4.4.0.79.64_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-generic-lts-xenial_4.4.0.79.64_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-4.4.0-79-lowlatency_4.4.0-79.100~14.04.1_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-4.4.0-79-lowlatency_4.4.0-79.100~14.04.1_amd64.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-lowlatency-lts-xenial_4.4.0.79.64_i386.debLinux
Linux hardware enablement kernel from Xenial for Trusty (USN-3312-2) linux-image-lowlatency-lts-xenial_4.4.0.79.64_amd64.debLinux
Linux kernel (USN-3406-1) linux-image-generic_3.13.0.135.144_i386.debLinux
Linux kernel (USN-3406-1) linux-image-lowlatency_3.13.0.135.144_i386.debLinux
Linux kernel (USN-3470-1) linux-image-generic_3.13.0.135.144_i386.debLinux
Linux kernel (USN-3470-1) linux-image-generic_3.13.0.135.144_amd64.debLinux
Linux kernel (USN-3470-1) linux-image-lowlatency_3.13.0.135.144_i386.debLinux
Linux kernel (USN-3470-1) linux-image-lowlatency_3.13.0.135.144_amd64.debLinux
Linux kernel (USN-3470-1) linux-image-3.13.0-135-generic_3.13.0-135.184_i386.debLinux
Linux kernel (USN-3470-1) linux-image-3.13.0-135-generic_3.13.0-135.184_amd64.debLinux
Linux kernel (USN-3470-1) linux-image-3.13.0-135-lowlatency_3.13.0-135.184_i386.debLinux
Linux kernel (USN-3470-1) linux-image-3.13.0-135-lowlatency_3.13.0-135.184_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234