CVE-2016-10153 - The crypto scatterlist API in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CON

CVE-2016-10153

Summary

The crypto scatterlist API in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging reliance on earlier net/ceph/crypto.c code.

References

Vulnerable Configurations

cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.2:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.3:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.4:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.5:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.9.5:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 09-02-2017 - 14:57)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	95713
confirm	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a45f795c65b479b4ba107b6ccde29b896d51ee98 http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.6 https://bugzilla.redhat.com/show_bug.cgi?id=1416101 https://github.com/torvalds/linux/commit/a45f795c65b479b4ba107b6ccde29b896d51ee98
mlist	[oss-security] 20170120 Re: CVE REQUEST: linux kernel: process with pgid zero able to crash kernel

Last major update

09-02-2017 - 14:57

Published

06-02-2017 - 06:59

Last modified

09-02-2017 - 14:57