QwikSec

Security Database

CVE

CWE

Training

CVE-2016-8636

Published: Feb 22, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

Integer overflow in the mem_check_range function in drivers/infiniband/sw/rxe/rxe_mr.c in the Linux kernel before 4.9.10 allows local users to cause a denial of service (memory corruption), obtain sensitive information from kernel memory, or possibly have unspecified other impact via a write or read request involving the "RDMA protocol over infiniband" (aka Soft RoCE) technology.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

[oss-security] 20170211 CVE publication request - CVE 2016-8636

mailing-list

x_refsource_MLIST

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.10

x_refsource_CONFIRM

https://eyalitkin.wordpress.com/2017/02/11/cve-publication-cve-2016-8636/

x_refsource_MISC

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=647bf3d8a8e5777319da92af672289b2a6c4dc66

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=1421981

x_refsource_CONFIRM

https://github.com/torvalds/linux/commit/647bf3d8a8e5777319da92af672289b2a6c4dc66

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.