Wind River Support Network

HomeDefectsLIN9-2536
Fixed

LIN9-2536 : Security Advisory - linux - CVE-2016-8655

Created: Dec 5, 2016    Updated: May 29, 2018
Resolved Date: Dec 7, 2016
Found In Version: unknown
Severity: Severe
Applicable for: Wind River Linux 9
Component/s: Kernel

Description

race condition in af_packet packet_setsockopt and packet_set_ring.

Philip Pettersson discovered a race condition in the af_packet
implementation in the Linux kernel. A local unprivileged attacker could use
this to cause a denial of service (system crash) or run arbitrary code with
administrative privileges.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8655

CVEs


Live chat
Online