Vulnerability Details CVE-2016-6187
The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 4.6.5 does not validate the buffer size, which allows local users to gain privileges by triggering an AppArmor setprocattr hook.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=30a46a4647fd1df9cf52e43bf467f0d9265096ca
- http://marc.info/?l=linux-kernel&m=146793642811929&w=2
- http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.5
- http://www.openwall.com/lists/oss-security/2016/07/09/2
- http://www.securityfocus.com/bid/91696
- https://bugzilla.redhat.com/show_bug.cgi?id=1354383
- https://github.com/torvalds/linux/commit/30a46a4647fd1df9cf52e43bf467f0d9265096ca
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=30a46a4647fd1df9cf52e43bf467f0d9265096ca
- http://marc.info/?l=linux-kernel&m=146793642811929&w=2
- http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.5
- http://www.openwall.com/lists/oss-security/2016/07/09/2
- http://www.securityfocus.com/bid/91696
- https://bugzilla.redhat.com/show_bug.cgi?id=1354383
- https://github.com/torvalds/linux/commit/30a46a4647fd1df9cf52e43bf467f0d9265096ca
Products affected by CVE-2016-6187
-
cpe:2.3:o:linux:linux_kernel:4.5
-
cpe:2.3:o:linux:linux_kernel:4.5.0
-
cpe:2.3:o:linux:linux_kernel:4.5.1
-
cpe:2.3:o:linux:linux_kernel:4.5.2
-
cpe:2.3:o:linux:linux_kernel:4.5.3
-
cpe:2.3:o:linux:linux_kernel:4.5.4
-
cpe:2.3:o:linux:linux_kernel:4.5.5
-
cpe:2.3:o:linux:linux_kernel:4.5.6
-
cpe:2.3:o:linux:linux_kernel:4.5.7
-
cpe:2.3:o:linux:linux_kernel:4.6
-
cpe:2.3:o:linux:linux_kernel:4.6.1
-
cpe:2.3:o:linux:linux_kernel:4.6.2
-
cpe:2.3:o:linux:linux_kernel:4.6.3
-
cpe:2.3:o:linux:linux_kernel:4.6.4