CVE-2016-4565

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allows local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00017.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00023.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html

http://rhn.redhat.com/errata/RHSA-2016-1489.html

http://rhn.redhat.com/errata/RHSA-2016-1581.html

http://rhn.redhat.com/errata/RHSA-2016-1617.html

http://rhn.redhat.com/errata/RHSA-2016-1640.html

http://rhn.redhat.com/errata/RHSA-2016-1657.html

http://rhn.redhat.com/errata/RHSA-2016-1814.html

http://www.debian.org/security/2016/dsa-3607

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.3

http://www.openwall.com/lists/oss-security/2016/05/07/1

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

http://www.securityfocus.com/bid/90301

http://www.ubuntu.com/usn/USN-3001-1

http://www.ubuntu.com/usn/USN-3002-1

http://www.ubuntu.com/usn/USN-3003-1

http://www.ubuntu.com/usn/USN-3004-1

http://www.ubuntu.com/usn/USN-3005-1

http://www.ubuntu.com/usn/USN-3006-1

http://www.ubuntu.com/usn/USN-3007-1

http://www.ubuntu.com/usn/USN-3018-1

http://www.ubuntu.com/usn/USN-3018-2

http://www.ubuntu.com/usn/USN-3019-1

http://www.ubuntu.com/usn/USN-3021-1

http://www.ubuntu.com/usn/USN-3021-2

https://access.redhat.com/errata/RHSA-2016:1277

https://access.redhat.com/errata/RHSA-2016:1301

https://access.redhat.com/errata/RHSA-2016:1341

https://access.redhat.com/errata/RHSA-2016:1406

https://bugzilla.redhat.com/show_bug.cgi?id=1310570

https://github.com/torvalds/linux/commit/e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3

Details

Source: MITRE

Published: 2016-05-23

Updated: 2018-01-05

Type: CWE-264

Risk Information

CVSS v2

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.5.2 (inclusive)

Tenable Plugins

View all (58 total)

IDNameProductFamilySeverity
124985EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1532)NessusHuawei Local Security Checks
high
124816EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1492)NessusHuawei Local Security Checks
critical
99806EulerOS 2.0 SP1 : kernel (EulerOS-SA-2016-1043)NessusHuawei Local Security Checks
high
99163OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0057) (Dirty COW)NessusOracleVM Local Security Checks
critical
96903SUSE SLES11 Security Update : kernel (SUSE-SU-2017:0333-1)NessusSuSE Local Security Checks
critical
93679OracleVM 3.4 : Unbreakable / etc (OVMSA-2016-0100)NessusOracleVM Local Security Checks
critical
93370SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2245-1)NessusSuSE Local Security Checks
critical
93364RHEL 6 : kernel (RHSA-2016:1814)NessusRed Hat Local Security Checks
high
93299SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:2105-1)NessusSuSE Local Security Checks
high
93283SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2014-1)NessusSuSE Local Security Checks
high
93280SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2010-1)NessusSuSE Local Security Checks
high
93278SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2006-1)NessusSuSE Local Security Checks
high
93277SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2005-1)NessusSuSE Local Security Checks
high
93276SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2002-1)NessusSuSE Local Security Checks
high
93275SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2001-1)NessusSuSE Local Security Checks
high
93270SUSE SLES12 Security Update : kernel (SUSE-SU-2016:1995-1)NessusSuSE Local Security Checks
high
93216openSUSE Security Update : the Linux Kernel (openSUSE-2016-1029)NessusSuSE Local Security Checks
high
93165SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:1690-1)NessusSuSE Local Security Checks
high
93164SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1672-1)NessusSuSE Local Security Checks
high
93148Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3596)NessusOracle Linux Local Security Checks
critical
93104openSUSE Security Update : the Linux Kernel (openSUSE-2016-1015)NessusSuSE Local Security Checks
critical
93094RHEL 7 : kernel (RHSA-2016:1657)NessusRed Hat Local Security Checks
high
93070RHEL 6 : kernel (RHSA-2016:1640)NessusRed Hat Local Security Checks
high
92995RHEL 6 : kernel (RHSA-2016:1617)NessusRed Hat Local Security Checks
high
92836RHEL 6 : kernel (RHSA-2016:1581)NessusRed Hat Local Security Checks
high
92580RHEL 6 : kernel (RHSA-2016:1489)NessusRed Hat Local Security Checks
high
92402Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20160712)NessusScientific Linux Local Security Checks
high
92030RHEL 6 : kernel (RHSA-2016:1406)NessusRed Hat Local Security Checks
high
92028Oracle Linux 6 : kernel (ELSA-2016-1406)NessusOracle Linux Local Security Checks
high
92026CentOS 6 : kernel (CESA-2016:1406)NessusCentOS Local Security Checks
high
91886Debian DSA-3607-1 : linux - security updateNessusDebian Local Security Checks
critical
91884Ubuntu 12.04 LTS : linux vulnerabilities (USN-3021-1)NessusUbuntu Local Security Checks
high
91882Ubuntu 14.04 LTS : linux-lts-utopic vulnerabilities (USN-3019-1)NessusUbuntu Local Security Checks
high
91881Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-3018-2)NessusUbuntu Local Security Checks
high
91880Ubuntu 14.04 LTS : linux vulnerabilities (USN-3018-1)NessusUbuntu Local Security Checks
high
91872RHEL 6 : MRG (RHSA-2016:1341)NessusRed Hat Local Security Checks
high
91853Scientific Linux Security Update : kernel on SL7.x x86_64 (20160623)NessusScientific Linux Local Security Checks
high
91850Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3579)NessusOracle Linux Local Security Checks
high
91805RHEL 7 : kernel-rt (RHSA-2016:1301)NessusRed Hat Local Security Checks
high
91801RHEL 7 : kernel (RHSA-2016:1277)NessusRed Hat Local Security Checks
high
91796Oracle Linux 7 : kernel (ELSA-2016-1277)NessusOracle Linux Local Security Checks
high
91785CentOS 7 : kernel (CESA-2016:1277)NessusCentOS Local Security Checks
high
91776OracleVM 3.3 : kernel-uek (OVMSA-2016-0084)NessusOracleVM Local Security Checks
high
91775OracleVM 3.4 : kernel-uek (OVMSA-2016-0083)NessusOracleVM Local Security Checks
high
91743OracleVM 3.2 : kernel-uek (OVMSA-2016-0060)NessusOracleVM Local Security Checks
high
91736openSUSE Security Update : the Linux Kernel (openSUSE-2016-753)NessusSuSE Local Security Checks
critical
91687Debian DLA-516-1 : linux security updateNessusDebian Local Security Checks
critical
91592Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3573)NessusOracle Linux Local Security Checks
high
91591Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3572)NessusOracle Linux Local Security Checks
high
91590Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3570)NessusOracle Linux Local Security Checks
high
91569Ubuntu 16.04 LTS : linux-raspi2 vulnerabilities (USN-3007-1)NessusUbuntu Local Security Checks
high
91568Ubuntu 16.04 LTS : linux vulnerabilities (USN-3006-1)NessusUbuntu Local Security Checks
high
91567Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3005-1)NessusUbuntu Local Security Checks
high
91566Ubuntu 15.10 : linux-raspi2 vulnerabilities (USN-3004-1)NessusUbuntu Local Security Checks
critical
91565Ubuntu 15.10 : linux vulnerabilities (USN-3003-1)NessusUbuntu Local Security Checks
critical
91564Ubuntu 14.04 LTS : linux-lts-wily vulnerabilities (USN-3002-1)NessusUbuntu Local Security Checks
critical
91563Ubuntu 14.04 LTS : linux-lts-vivid vulnerabilities (USN-3001-1)NessusUbuntu Local Security Checks
critical
91241Amazon Linux AMI : kernel (ALAS-2016-703)NessusAmazon Linux Local Security Checks
high