CVE-2016-2143
EUVD-2016-324427.04.2016, 17:59
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 2.6.25 ≤ 𝑥 < 3.2.79 |
| linux | linux_kernel | 3.3 ≤ 𝑥 < 3.12.58 |
| linux | linux_kernel | 3.13 ≤ 𝑥 < 3.16.35 |
| linux | linux_kernel | 3.17 ≤ 𝑥 < 4.1.21 |
| linux | linux_kernel | 4.2 ≤ 𝑥 < 4.4.6 |
| debian | debian_linux | 6.0 |
| debian | debian_linux | 7.0 |
| debian | debian_linux | 8.0 |
| redhat | enterprise_linux | 7.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||
| linux-armadaxp |
| ||||||||
| linux-flo |
| ||||||||
| linux-goldfish |
| ||||||||
| linux-grouper |
| ||||||||
| linux-linaro-omap |
| ||||||||
| linux-linaro-shared |
| ||||||||
| linux-linaro-vexpress |
| ||||||||
| linux-lts-quantal |
| ||||||||
| linux-lts-raring |
| ||||||||
| linux-lts-saucy |
| ||||||||
| linux-lts-trusty |
| ||||||||
| linux-lts-utopic |
| ||||||||
| linux-lts-vivid |
| ||||||||
| linux-lts-wily |
| ||||||||
| linux-lts-xenial |
| ||||||||
| linux-maguro |
| ||||||||
| linux-mako |
| ||||||||
| linux-manta |
| ||||||||
| linux-qcm-msm |
| ||||||||
| linux-raspi2 |
| ||||||||
| linux-snapdragon |
| ||||||||
| linux-ti-omap4 |
|
Common Weakness Enumeration
References