CVE-2016-2143
published 2016-04-27CVE-2016-2143: The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 4.4.6-1 (bookworm) | linux 4.4.6-1 (bookworm) |
| linux | linux_kernel | >= 0 < 4.4.6-1 | 4.4.6-1 |
| linux | linux_kernel | >= 0 < 4.4.6-1 | 4.4.6-1 |
| linux | linux_kernel | >= 0 < 4.4.6-1 | 4.4.6-1 |
| linux | linux_kernel | >= 0 < 4.4.6-1 | 4.4.6-1 |
| linux | linux_kernel | >= 2.6.25 < 3.2.79 | 3.2.79 |
| linux | linux_kernel | >= 3.13 < 3.16.35 | 3.16.35 |
| linux | linux_kernel | >= 3.17 < 4.1.21 | 4.1.21 |
| linux | linux_kernel | >= 3.3 < 3.12.58 | 3.12.58 |
| linux | linux_kernel | >= 4.2 < 4.4.6 | 4.4.6 |
| oracle | linux | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH