We have moved to a new Sailfish OS Forum. Please start new discussions there.

Revision history [back]

click to hide/show revision 1
initial version

posted 2017-04-06 18:47:34 +0200

lpr gravatar image

critical remote-attackable CVE-2016-7117 in kernel/net: Fix use after free in the recvmmsg exit path

CVSS Base Score3: 9.8 critical remote

Description

Use-after-free vulnerability in the __sys_recvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing.

patch is available, so please fix it as soon as possible...

Copyright © Jolla Ltd. 2013-2019. All rights reserved.
about | faq | help | privacy policy | terms of service | give feedback
Powered by Askbot version 0.7.49