CVE-2016-1583

high-risk

Published 2016-06-27

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

Do I need to act?

0.37% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

39992

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (20)

Linux Kernel

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Debuginfo

Suse Linux Enterprise Desktop

Suse Linux Enterprise Live Patching

Suse Linux Enterprise Server

Suse Linux Enterprise Workstation Extension

Ubuntu Linux

Debian Linux

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Module For Public Cloud

Suse Linux Enterprise Server

Affected Vendors

Canonical Novell Linux Debian

References (100)

Vendor Advisory http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db...

Vendor Advisory http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5364c...

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Third Party Advisory http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

and 80 more references

/ 100

high-risk

Severity 24/34 · High

Exploitability 8/34 · Low

Exposure 20/34 · Moderate