Linux Kernel Netfilter Subsystem Privilege Escalation and Denial of Service Vulnerability
CVE-2016-3134 · HIGH Severity
AV:L/AC:L/AU:N/C:C/I:C/A:C
The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.