CVE-2016-5696
published 2016-08-06CVE-2016-5696: net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers…
PriorityP432medium4.8CVSS 3.0
AVNACHPRNUINSUCNILAL
EPSS
15.07%
96.3th percentile
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | linux | < linux 4.7.2-1 (bookworm) | linux 4.7.2-1 (bookworm) |
| android | <= 7.0 | — | |
| android | — | — | |
| linux | linux_kernel | <= 4.6.6 | — |
| linux | linux_kernel | >= 0 < 4.7.2-1 | 4.7.2-1 |
| linux | linux_kernel | >= 0 < 4.7.2-1 | 4.7.2-1 |
| linux | linux_kernel | >= 0 < 4.7.2-1 | 4.7.2-1 |
| linux | linux_kernel | >= 0 < 4.7.2-1 | 4.7.2-1 |
| linux | linux_kernel | >= 0 < 3.13.0-95.142 | 3.13.0-95.142 |
| linux | linux_kernel | >= 0 < 4.4.0-36.55 | 4.4.0-36.55 |
| oracle | vm_server | — | — |
| oracle | vm_server | — | — |
| paloalto | pan-os | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Attack vector is off-path (blind in-window); attacker exploits the global challenge ACK rate limit counter by creating congestion and measuring changes via probing packets — monitor for abnormal TCP RST or unexpected payload injection in established TCP sessions ↗
- →The vulnerable code path is net/ipv4/tcp_input.c — focus kernel-level monitoring and integrity checks on this file and the challenge ACK rate-limiting logic ↗
- →Attack technique is a blind in-window attack leveraging RFC 5961 challenge ACK rate limiting — detect by monitoring for high rates of challenge ACK segments or anomalous ACK patterns on TCP connections ↗
- ·Linux kernels shipped with Red Hat Enterprise Linux 4 and 5 are NOT affected by this vulnerability ↗
- ·Vulnerability is fixed in Linux kernel 4.7 and later; systems running kernel >= 4.7 are not vulnerable ↗
CVSS provenance
nvdv3.04.8MEDIUMCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:P
osv7.5HIGH
vendor_ubuntu7.5HIGH
vendor_debian4.8MEDIUM
vendor_redhat4.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
Kernel Vulnerability
vendor_paloalto·2017-05-23·CVSS 4.8
CVE-2016-5696 [MEDIUM] CWE-200 Kernel Vulnerability
Kernel Vulnerability
A vulnerability exists in the kernel of PAN-OS that may result in Information Disclosure. The challenge ACK rate limiting in the kernel's networking subsystem may allow an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the changes by probing packets. (ref # PAN-62500 / CVE-2016-5696).
Successful exploitation of this issue may allow an attacker to terminate a TCP connection or inject a payload into non-secured TCP connection between two endpoints on the network.
This issue affects PAN-OS 6.1, PAN-OS 7.0.15 and earlier, PAN-OS 7.1.9 and earlier
Affected products: PAN-OS
Solution: PAN-OS 7.0.16 and later, PAN-OS 7.1.10 and later
Workaround: N/A
Android
CVE-2016-5696: Android Security Bulletin 2016-10-01
CVE: CVE-2016-5696
Severity: MEDIUM
References: A-30809774
Upstream
kernel
vendor_android·2016-10-01·CVSS 4.8
CVE-2016-5696 [MEDIUM] CVE-2016-5696: Android Security Bulletin 2016-10-01
CVE: CVE-2016-5696
Severity: MEDIUM
References: A-30809774
Upstream
kernel
Android Security Bulletin 2016-10-01
CVE: CVE-2016-5696
Severity: MEDIUM
References: A-30809774
Upstream
kernel
Ubuntu
Linux kernel (Raspberry Pi 2) vulnerabilities
vendor_ubuntu·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] Linux kernel (Raspberry Pi 2) vulnerabilities
Title: Linux kernel (Raspberry Pi 2) vulnerabilities
Summary: Several security issues were fixed in the kernel.
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a flaw in
Ubuntu
Linux kernel (Qualcomm Snapdragon) vulnerabilities
vendor_ubuntu·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] Linux kernel (Qualcomm Snapdragon) vulnerabilities
Title: Linux kernel (Qualcomm Snapdragon) vulnerabilities
Summary: Several security issues were fixed in the kernel.
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a fla
Ubuntu
Linux kernel (Xenial HWE) vulnerabilities
vendor_ubuntu·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] Linux kernel (Xenial HWE) vulnerabilities
Title: Linux kernel (Xenial HWE) vulnerabilities
Summary: Several security issues were fixed in the kernel.
USN-3070-1 fixed vulnerabilities in the Linux kernel for Ubuntu
16.04 LTS. This update provides the corresponding updates for the
Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for
Ubuntu 14.04 LTS.
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linu
Ubuntu
Linux kernel (OMAP4) vulnerabilities
vendor_ubuntu·2016-08-29·CVSS 7.5
CVE-2016-5244 [HIGH] Linux kernel (OMAP4) vulnerabilities
Title: Linux kernel (OMAP4) vulnerabilities
Summary: Several security issues were fixed in the kernel.
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker could use this to
cause a denial of service (reset connection) or inject content into an TCP
stream. (CVE-2016-5696)
It was discovered that a heap based buffer overflow existed in the USB HID
driver in the Linux kernel. A local attacker could use this cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2016
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2016-08-29·CVSS 7.5
CVE-2016-5244 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the kernel.
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker could use this to
cause a denial of service (reset connection) or inject content into an TCP
stream. (CVE-2016-5696)
Pengfei Wang discovered a race condition in the MIC VOP driver in the Linux
kernel. A local attacker could use this to cause a denial of service
(system crash) or obtain potentially sensitive information from kernel
memory. (CVE-
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2016-08-29·CVSS 5.5
CVE-2016-1237 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the kernel.
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a flaw in the TCP implement
Ubuntu
Linux kernel (Trusty HWE) vulnerabilities
vendor_ubuntu·2016-08-29·CVSS 7.5
CVE-2016-5244 [HIGH] Linux kernel (Trusty HWE) vulnerabilities
Title: Linux kernel (Trusty HWE) vulnerabilities
Summary: Several security issues were fixed in the kernel.
USN-3071-1 fixed vulnerabilities in the Linux kernel for Ubuntu
14.04 LTS. This update provides the corresponding updates for the
Linux Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for
Ubuntu 12.04 LTS.
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker could use this to
cause a denial of service (reset connection) or inject content into an TCP
stream. (CVE-2016-5696)
Pe
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2016-08-29·CVSS 7.5
CVE-2016-5244 [HIGH] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Several security issues were fixed in the kernel.
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker could use this to
cause a denial of service (reset connection) or inject content into an TCP
stream. (CVE-2016-5696)
It was discovered that a heap based buffer overflow existed in the USB HID
driver in the Linux kernel. A local attacker could use this cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2016-5829)
Red Hat
kernel: challenge ACK counter information disclosure.
vendor_redhat·2016-07-12·CVSS 4.8
CVE-2016-5696 [MEDIUM] CWE-203 kernel: challenge ACK counter information disclosure.
kernel: challenge ACK counter information disclosure.
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the changes by probing packets. An off-path attacker could use this flaw to either terminate TCP connection and/or inject payload into non-secured TCP connection between two endpoints on the network.
Statement: This issue does not affect the L
Debian
CVE-2016-5696: linux - net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine ...
vendor_debian·2016·CVSS 4.8
CVE-2016-5696 [MEDIUM] CVE-2016-5696: linux - net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine ...
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
Scope: local
bookworm: resolved (fixed in 4.7.2-1)
bullseye: resolved (fixed in 4.7.2-1)
forky: resolved (fixed in 4.7.2-1)
sid: resolved (fixed in 4.7.2-1)
trixie: resolved (fixed in 4.7.2-1)
GHSA
GHSA-26qg-wc7f-8867: net/ipv4/tcp_input
ghsa_unreviewed·2022-05-13
CVE-2016-5696 [MEDIUM] CWE-200 GHSA-26qg-wc7f-8867: net/ipv4/tcp_input
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
OSV
linux-lts-xenial vulnerabilities
osv·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] linux-lts-xenial vulnerabilities
linux-lts-xenial vulnerabilities
USN-3070-1 fixed vulnerabilities in the Linux kernel for Ubuntu
16.04 LTS. This update provides the corresponding updates for the
Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for
Ubuntu 14.04 LTS.
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with
OSV
linux-snapdragon vulnerabilities
osv·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] linux-snapdragon vulnerabilities
linux-snapdragon vulnerabilities
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remot
OSV
linux-raspi2 vulnerabilities
osv·2016-08-30·CVSS 5.5
CVE-2016-1237 [MEDIUM] linux-raspi2 vulnerabilities
linux-raspi2 vulnerabilities
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote at
OSV
linux vulnerabilities
osv·2016-08-29·CVSS 7.5
CVE-2016-5244 [HIGH] linux vulnerabilities
linux vulnerabilities
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker could use this to
cause a denial of service (reset connection) or inject content into an TCP
stream. (CVE-2016-5696)
Pengfei Wang discovered a race condition in the MIC VOP driver in the Linux
kernel. A local attacker could use this to cause a denial of service
(system crash) or obtain potentially sensitive information from kernel
memory. (CVE-2016-5728)
Cyril Bur discovered that on PowerPC platforms, the Linux kern
OSV
linux vulnerabilities
osv·2016-08-29·CVSS 5.5
CVE-2016-1237 [MEDIUM] linux vulnerabilities
linux vulnerabilities
A missing permission check when settings ACLs was discovered in nfsd. A
local user could exploit this flaw to gain access to any file by setting an
ACL. (CVE-2016-1237)
Kangjie Lu discovered an information leak in the Reliable Datagram Sockets
(RDS) implementation in the Linux kernel. A local attacker could use this
to obtain potentially sensitive information from kernel memory.
(CVE-2016-5244)
James Patrick-Evans discovered that the airspy USB device driver in the
Linux kernel did not properly handle certain error conditions. An attacker
with physical access could use this to cause a denial of service (memory
consumption). (CVE-2016-5400)
Yue Cao et al discovered a flaw in the TCP implementation's handling of
challenge acks in the Linux kernel. A remote attacker
OSV
CVE-2016-5696: net/ipv4/tcp_input
osv·2016-08-06·CVSS 4.8
CVE-2016-5696 [MEDIUM] CVE-2016-5696: net/ipv4/tcp_input
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-5696 kernel: challenge ACK counter information disclosure. [fedora-all]
bugzilla·2016-07-12·CVSS 4.8
CVE-2016-5696 [MEDIUM] CVE-2016-5696 kernel: challenge ACK counter information disclosure. [fedora-all]
CVE-2016-5696 kernel: challenge ACK counter information disclosure. [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
Bugzilla
CVE-2016-5696 kernel: challenge ACK counter information disclosure.
bugzilla·2016-07-12·CVSS 4.8
CVE-2016-5696 [MEDIUM] CVE-2016-5696 kernel: challenge ACK counter information disclosure.
CVE-2016-5696 kernel: challenge ACK counter information disclosure.
A flaw was found in the implementation of the Linux kernels handling of
networking challenge ack where an attacker is able to determine the
shared counter.
This may allow an attacker located on different subnet to inject or take over a TCP connection between a server and client without having to be a traditional Man In the Middle (MITM) style attack.
OSS-Security post:
http://seclists.org/oss-sec/2016/q3/44
Upstream patch:
https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758
Discussion:
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1355615]
---
Statement:
This issue does not affect the Linux kernels as shipped with Red Hat Enterpris
arXiv
Automating the Detection of Code Vulnerabilities by Analyzing GitHub Issues
arxiv_fulltext·2025-01-09
Automating the Detection of Code Vulnerabilities by Analyzing GitHub Issues
IEEEexample:BSTcontrol
Automating the Detection of \ Vulnerabilities by Analyzing GitHub Issues
Daniele Cipollone^
^ Work performed while at RISE AB.
Delft University of Technology
Changjie Wang
KTH Royal Institute of Technology
Mariano Scazzariello
RISE AB
Simone Ferlin
Red Hat
Maliheh Izadi
Delft University of Technology
Dejan Kosti\'c
KTH Royal Institute of Technology
RISE AB
Marco Chiesa
KTH Royal Institute of Technology
## Abstract
In today's digital landscape, the importance of timely and accurate vulnerability detection has significantly increased. This paper presents a novel approach that leverages transformer-based models and machine learning techniques to automate the identification of software vulnerabilities by analyzing GitHub issues. We introduce a new dataset spec
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758http://rhn.redhat.com/errata/RHSA-2016-1631.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1632.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1633.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1657.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1664.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1814.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1815.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1939.htmlhttp://source.android.com/security/bulletin/2016-10-01.htmlhttp://www.openwall.com/lists/oss-security/2016/07/12/2http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.prnewswire.com/news-releases/mitnick-attack-reappears-at-geekpwn-macau-contest-300270779.htmlhttp://www.securityfocus.com/bid/91704http://www.securitytracker.com/id/1036625http://www.ubuntu.com/usn/USN-3070-1http://www.ubuntu.com/usn/USN-3070-2http://www.ubuntu.com/usn/USN-3070-3http://www.ubuntu.com/usn/USN-3070-4http://www.ubuntu.com/usn/USN-3071-1http://www.ubuntu.com/usn/USN-3071-2http://www.ubuntu.com/usn/USN-3072-1http://www.ubuntu.com/usn/USN-3072-2https://bto.bluecoat.com/security-advisory/sa131https://bugzilla.redhat.com/show_bug.cgi?id=1354708https://github.com/Gnoxter/mountain_goathttps://github.com/torvalds/linux/commit/75ff39ccc1bd5d3c455b6822ab09e533c551f758https://kc.mcafee.com/corporate/index?page=content&id=SB10167https://security.paloaltonetworks.com/CVE-2016-5696https://www.arista.com/en/support/advisories-notices/security-advisories/1461-security-advisory-23https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_cao.pdfhttp://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758http://rhn.redhat.com/errata/RHSA-2016-1631.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1632.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1633.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1657.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1664.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1814.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1815.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1939.htmlhttp://source.android.com/security/bulletin/2016-10-01.htmlhttp://www.openwall.com/lists/oss-security/2016/07/12/2http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.prnewswire.com/news-releases/mitnick-attack-reappears-at-geekpwn-macau-contest-300270779.htmlhttp://www.securityfocus.com/bid/91704http://www.securitytracker.com/id/1036625http://www.ubuntu.com/usn/USN-3070-1http://www.ubuntu.com/usn/USN-3070-2http://www.ubuntu.com/usn/USN-3070-3http://www.ubuntu.com/usn/USN-3070-4http://www.ubuntu.com/usn/USN-3071-1http://www.ubuntu.com/usn/USN-3071-2http://www.ubuntu.com/usn/USN-3072-1http://www.ubuntu.com/usn/USN-3072-2https://bto.bluecoat.com/security-advisory/sa131https://bugzilla.redhat.com/show_bug.cgi?id=1354708https://github.com/Gnoxter/mountain_goathttps://github.com/torvalds/linux/commit/75ff39ccc1bd5d3c455b6822ab09e533c551f758https://kc.mcafee.com/corporate/index?page=content&id=SB10167https://security.paloaltonetworks.com/CVE-2016-5696https://www.arista.com/en/support/advisories-notices/security-advisories/1461-security-advisory-23https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_cao.pdf
2016-08-06
Published