CVE-2016-3135

2016-04-27 19:59:23 2017-09-08 04:07:44

Integer overflow in the xt_alloc_table_info function in net/netfilter/x_tables.c in the Linux kernel through 4.5.2 on 32-bit platforms allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.

Vector

LOCAL

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Linux Linux kernel 4.5.2 (not an official CPE) Canonical Ubuntu linux 15.10 (not an official CPE) Canonical Ubuntu Linux 14.04 LTS (Long-Term Support) Canonical Ubuntu linux 16.04 ~~lts~~~ (not an official CPE)

Linux - Linux kernel Canonical - Ubuntu linux

Advisory	Patch	Confirmed	Link
			https://code.google.com/p/google-security-research/issue...
			https://bugzilla.redhat.com/show_bug.cgi?id=1317386
			USN-3057-1
			USN-3056-1
			USN-3055-1
			USN-3054-1
			USN-2930-3
			USN-2930-2
			84305
			USN-2930-1
			http://git.kernel.org/cgit/linux/kernel/git/torvalds/lin...
			https://github.com/torvalds/linux/commit/d157bd761585605...

CVE-2016-3135

2016-04-27 19:59:23 2017-09-08 04:07:44

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)