cbcvebase.
CVE-2016-4558
published 2016-05-23

CVE-2016-4558: The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or…

PriorityP433high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
EXPLOIT
EPSS
0.86%
54.1th percentile
The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted application on (1) a system with more than 32 Gb of memory, related to the program reference count or (2) a 1 Tb system, related to the map reference count.

Affected

10 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
debianlinux< linux 4.5.3-1 (bookworm)linux 4.5.3-1 (bookworm)
linuxlinux_kernel>= 0 < 4.5.3-14.5.3-1
linuxlinux_kernel>= 0 < 4.5.3-14.5.3-1
linuxlinux_kernel>= 0 < 4.5.3-14.5.3-1
linuxlinux_kernel>= 0 < 4.5.3-14.5.3-1
linuxlinux_kernel>= 0 < 4.4.0-24.434.4.0-24.43
linuxlinux_kernel>= 4.4 < 4.4.114.4.11
linuxlinux_kernel>= 4.5 < 4.5.54.5.5

CVSS provenance

nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv7.0HIGH
vendor_debian7.0HIGH
vendor_redhat7.0HIGH
vendor_ubuntu5.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.