Linux Kernel Netfilter Subsystem Privilege Escalation and Denial of Service Vulnerability

Linux Kernel Netfilter Subsystem Privilege Escalation and Denial of Service Vulnerability

CVE-2016-3134 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.