CVE-2016-8666

Related Files

Red Hat Security Advisory 2017-0004-01

Posted Jan 3, 2017

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-0004-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: A flaw was found in the way the Linux kernel's networking subsystem handled offloaded packets with multiple layers of encapsulation in the GRO code path. A remote attacker could use this flaw to trigger unbounded recursion in the kernel that could lead to stack corruption, resulting in a system crash.

tags | advisory, remote, kernel

systems | linux, redhat

advisories | CVE-2016-8666

SHA-256 | 5e98612a0e8b9d97f38f548ca41a8e910a16e3612a05dcf2327d39714b89f095

Download | Favorite | View

Kernel Live Patch Security Notice LSN-0012-1

Posted Oct 20, 2016

Authored by Luis Henriques

Vladimir Benes discovered an unbounded recursion in the VLAN and TEB Generic Receive Offload (GRO) processing implementations in the Linux kernel, A remote attacker could use this to cause a stack corruption, leading to a denial of service (system crash). It was discovered that a race condition existed in the memory manager of the Linux kernel when handling copy-on-write breakage of private read-only memory mappings. A local attacker could use this to gain administrative privileges.

tags | advisory, remote, denial of service, kernel, local

systems | linux

advisories | CVE-2016-5195, CVE-2016-7039, CVE-2016-8666

SHA-256 | c25b2da43c7e870d98f3d2287f8bfebc1dba46d2dba4f24ed45b8ee608b6d7b9

Download | Favorite | View