drivers/firewire/net.c in the Linux kernel before 4.8.7, in certain unusual hardware configurations, allows remote attackers to execute arbitrary code via crafted fragmented packets.
References
Link | Resource |
---|---|
https://github.com/torvalds/linux/commit/667121ace9dbafb368618dbabcf07901c962ddac | Issue Tracking Patch Third Party Advisory |
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=667121ace9dbafb368618dbabcf07901c962ddac | Issue Tracking Patch Vendor Advisory |
http://www.openwall.com/lists/oss-security/2016/11/06/1 | Mailing List Third Party Advisory |
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.7 | Release Notes |
https://bugzilla.redhat.com/show_bug.cgi?id=1391490 | Issue Tracking |
https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ | Third Party Advisory |
http://www.securityfocus.com/bid/94149 | |
https://access.redhat.com/errata/RHSA-2018:1062 | |
https://access.redhat.com/errata/RHSA-2018:0676 | |
https://access.redhat.com/errata/RHSA-2019:1170 | |
https://access.redhat.com/errata/RHSA-2019:1190 |
Configurations
Information
Published : 2016-11-27 19:59
Updated : 2023-02-12 15:26
NVD link : CVE-2016-8633
Mitre link : CVE-2016-8633
JSON object : View
CWE
Products Affected
linux
- linux_kernel