CVE-2016-5243

MEDIUM

Linux Kernel < 4.6.3 - Information Disclosure

Title source: rule

Description

The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4.6.3 does not properly copy a certain string, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.

References (16)

[Vendor Advisory] http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5d2be1422e02ccd697ccfcd45c85b4a26e6178e2

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91334

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3049-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3050-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3051-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3052-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3053-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3054-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3055-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3056-1

[Vendor Advisory] http://www.ubuntu.com/usn/USN-3057-1

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=1343335

[Vendor Advisory] https://github.com/torvalds/linux/commit/5d2be1422e02ccd697ccfcd45c85b4a26e6178e2

[Patch] https://patchwork.ozlabs.org/patch/629100/

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3607

[Mailing List] http://www.openwall.com/lists/oss-security/2016/06/03/4

Scores

CVSS v3 5.5

EPSS 0.0003

EPSS Percentile 7.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-200

Status draft

Affected Products (1)

linux/linux_kernel < 4.6.3

Timeline

Published Jun 27, 2016

Tracked Since Feb 18, 2026