Integer Overflow in mem_check_range Function in Linux Kernel

Integer Overflow in mem_check_range Function in Linux Kernel

CVE-2016-8636 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Integer overflow in the mem_check_range function in drivers/infiniband/sw/rxe/rxe_mr.c in the Linux kernel before 4.9.10 allows local users to cause a denial of service (memory corruption), obtain sensitive information from kernel memory, or possibly have unspecified other impact via a write or read request involving the "RDMA protocol over infiniband" (aka Soft RoCE) technology.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.