Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-4913

The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.

Published

2016-05-23T10:59:14.723

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

3.9

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-200
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System canonical ubuntu_linux 12.04 Yes
Operating System canonical ubuntu_linux 14.04 Yes
Operating System canonical ubuntu_linux 15.10 Yes
Operating System canonical ubuntu_linux 16.04 Yes
Operating System linux linux_kernel < 3.2.81 Yes
Operating System linux linux_kernel < 3.10.102 Yes
Operating System linux linux_kernel < 3.12.60 Yes
Operating System linux linux_kernel < 3.14.70 Yes
Operating System linux linux_kernel < 3.16.36 Yes
Operating System linux linux_kernel < 3.18.34 Yes
Operating System linux linux_kernel < 4.1.25 Yes
Operating System linux linux_kernel < 4.4.11 Yes
Operating System linux linux_kernel < 4.5.5 Yes
Operating System oracle linux 6 Yes
Application novell suse_linux_enterprise_software_development_kit 11.0 Yes
Operating System novell suse_linux_enterprise_debuginfo 11.0 Yes
Operating System novell suse_linux_enterprise_server 11.0 Yes
Operating System novell suse_linux_enterprise_server 11.0 Yes
References