QwikSec

Security Database

CVE

CWE

Training

CVE-2016-9576

Published: Dec 28, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2016:3118

vendor-advisory

x_refsource_SUSE

SUSE-SU-2016:3248

vendor-advisory

x_refsource_SUSE

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a0ac402cfcdc904f9772e1762b3fda112dcc56a0

x_refsource_CONFIRM

openSUSE-SU-2016:3085

vendor-advisory

x_refsource_SUSE

https://github.com/torvalds/linux/commit/a0ac402cfcdc904f9772e1762b3fda112dcc56a0

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

SUSE-SU-2016:3188

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2016:3086

vendor-advisory

x_refsource_SUSE

SUSE-SU-2016:3146

vendor-advisory

x_refsource_SUSE

SUSE-SU-2016:3203

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

SUSE-SU-2016:3217

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=1403145

x_refsource_CONFIRM

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.14

x_refsource_CONFIRM

[oss-security] 20161209 Linux Kernel use-after-free in SCSI generic device interface

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_BID

SUSE-SU-2016:3252

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2016-9576 - Security Vulnerability | QwikSec