CVE-2016-10229

CRITICAL

Linux kernel <4.5 - RCE

Title source: llm

Description

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.

Exploits (1)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2016-10229

View Code ZIP pw:eip

References (7)

[Issue Tracking, Patch, Third Party Advisory] http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=197c949e7798fbf28cfadc69d9ca0c2abbf93191

[Patch, Third Party Advisory] http://source.android.com/security/bulletin/2017-04-01.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/97397

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038201

[Issue Tracking, Patch, Third Party Advisory] https://github.com/torvalds/linux/commit/197c949e7798fbf28cfadc69d9ca0c2abbf93191

[Third Party Advisory] https://security.paloaltonetworks.com/CVE-2016-10229

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20250103-0008/

Scores

CVSS v3 9.8

EPSS 0.0088

EPSS Percentile 75.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-358

Status draft

Affected Products (2)

linux/linux_kernel < 3.2.76

google/android < 7.1.1

Timeline

Published Apr 04, 2017

Tracked Since Feb 18, 2026