CVE-2016-3695 — Injection in Linux

CWE-74 — Injection CWE-358 — Improperly Implemented Security Check for Standard6 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 82.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Redhat Enterprise Linux

Timeline

PublishedDec 29

Latest updateMay 14

Description

The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶Debianlinux/linux_kernel< 4.5.1-1+3

▶debiandebian/linux< linux 4.5.1-1 (bookworm)

Also affects: Enterprise Linux 7.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-3c7w-rm52-555g: The einj_error_inject function in drivers/acpi/apei/einj↗2022-05-14

▶

OSV

CVE-2016-3695: The einj_error_inject function in drivers/acpi/apei/einj↗2017-12-29

▶

📋Vendor Advisories

Red Hat

kernel: Error injection via EINJ is allowed when securelevel is enabled↗2016-04-20

▶

Debian

CVE-2016-3695: linux - The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel a...↗2016

▶

💬Community

Bugzilla

CVE-2016-3695 kernel: Error injection via EINJ is allowed when securelevel is enabled↗2016-03-31

▶