cbcvebase.
CVE-2016-9793
published 2016-12-28

CVE-2016-9793: The sock_setsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sk_sndbuf and sk_rcvbuf, which allows local…

PriorityP341high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
1.57%
72.2th percentile
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sk_sndbuf and sk_rcvbuf, which allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact by leveraging the CAP_NET_ADMIN capability for a crafted setsockopt system call with the (1) SO_SNDBUFFORCE or (2) SO_RCVBUFFORCE option.

Affected

14 ranges
VendorProductVersion rangeFixed in
debianlinux< linux 4.8.15-1 (bookworm)linux 4.8.15-1 (bookworm)
googleandroid
linuxlinux_kernel>= 0 < 4.8.15-14.8.15-1
linuxlinux_kernel>= 0 < 4.8.15-14.8.15-1
linuxlinux_kernel>= 0 < 4.8.15-14.8.15-1
linuxlinux_kernel>= 0 < 4.8.15-14.8.15-1
linuxlinux_kernel>= 0 < 3.13.0-107.1543.13.0-107.154
linuxlinux_kernel>= 0 < 4.4.0-59.804.4.0-59.80
linuxlinux_kernel>= 3.13 < 3.16.403.16.40
linuxlinux_kernel>= 3.17 < 3.18.523.18.52
linuxlinux_kernel>= 3.19 < 4.1.504.1.50
linuxlinux_kernel>= 3.5 < 3.12.693.12.69
linuxlinux_kernel>= 4.2 < 4.4.384.4.38
linuxlinux_kernel>= 4.5 < 4.8.144.8.14

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_ubuntu7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.