CVE-2016-4913

CWE-200Information Exposure20 documents8 sources
Severity
7.8HIGH
EPSS
0.1%
top 75.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Linux Linux KernelCanonical Ubuntu LinuxNovell Suse Linux Enterprise Debuginfo+3 more
Timeline
PublishedMay 23
Latest updateMay 13

Description

The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

NVDlinux/linux_kernel3.33.10.102+8
Debianlinux< 4.5.4-1+3

Also affects: Ubuntu Linux 12.04, 14.04, 15.10, 16.04

Patches

Patch: www.openwall.comPatch: www.openwall.comPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-9vmv-j366-j2m2: The get_rock_ridge_filename function in fs/isofs/rock2022-05-13
CVEList
CVE-2016-4913: The get_rock_ridge_filename function in fs/isofs/rock2016-05-23
OSV
CVE-2016-4913: The get_rock_ridge_filename function in fs/isofs/rock2016-05-23

📋Vendor Advisories

13
Ubuntu
Linux kernel (Wily HWE) vulnerabilities2016-06-27
Ubuntu
Linux kernel vulnerabilities2016-06-27
Ubuntu
Linux kernel (Vivid HWE) vulnerabilities2016-06-27
Ubuntu
Linux kernel (OMAP4) vulnerabilities2016-06-27
Ubuntu
Linux kernel (Qualcomm Snapdragon) vulnerabilities2016-06-27

💬Community

3
Bugzilla
CVE-2016-6893 mailman: CSRF protection missing in the user options page2016-08-25
Bugzilla
CVE-2016-4913 kernel: Information leak when handling NM entries containing NUL2016-05-19
Bugzilla
CVE-2016-4913 kernel: Information leak when handling NM entries containing NUL [fedora-all]2016-05-19