CVE-2016-3699

The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.4 HIGH
LOCAL
HIGH
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
VendorProductVersion
linuxlinux_kernel
-
redhatenterprise_mrg
2.0
redhatlinux
7.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
trixie
6.11.5-1
fixed
sid
6.11.6-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
xenial
not-affected
trusty
not-affected
precise
not-affected
linux-armadaxp
xenial
dne
trusty
dne
precise
not-affected
linux-flo
xenial
not-affected
trusty
dne
precise
dne
linux-goldfish
xenial
not-affected
trusty
dne
precise
dne
linux-grouper
xenial
dne
trusty
dne
precise
dne
linux-linaro-omap
xenial
dne
trusty
dne
precise
ignored
linux-linaro-shared
xenial
dne
trusty
dne
precise
ignored
linux-linaro-vexpress
xenial
dne
trusty
dne
precise
ignored
linux-lts-quantal
xenial
dne
trusty
dne
precise
ignored
linux-lts-raring
xenial
dne
trusty
dne
precise
ignored
linux-lts-saucy
xenial
dne
trusty
dne
precise
ignored
linux-lts-trusty
xenial
dne
trusty
dne
precise
not-affected
linux-lts-utopic
xenial
dne
trusty
dne
precise
dne
linux-lts-vivid
xenial
dne
trusty
dne
precise
dne
linux-lts-wily
xenial
dne
trusty
dne
precise
dne
linux-lts-xenial
xenial
dne
trusty
not-affected
precise
dne
linux-maguro
xenial
dne
trusty
dne
precise
dne
linux-mako
xenial
not-affected
trusty
dne
precise
dne
linux-manta
xenial
dne
trusty
dne
precise
dne
linux-qcm-msm
xenial
dne
trusty
dne
precise
ignored
linux-raspi2
xenial
not-affected
trusty
dne
precise
dne
linux-snapdragon
xenial
not-affected
trusty
dne
precise
dne
linux-ti-omap4
xenial
dne
trusty
dne
precise
not-affected
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2016-2574.html
http://rhn.redhat.com/errata/RHSA-2016-2584.html
http://www.openwall.com/lists/oss-security/2016/09/22/4
http://www.securityfocus.com/bid/93114
https://bugzilla.redhat.com/show_bug.cgi?id=1329653
https://github.com/mjg59/linux/commit/a4a5ed2835e8ea042868b7401dced3f517cafa76
http://rhn.redhat.com/errata/RHSA-2016-2574.html
http://rhn.redhat.com/errata/RHSA-2016-2584.html
http://www.openwall.com/lists/oss-security/2016/09/22/4
http://www.securityfocus.com/bid/93114
https://bugzilla.redhat.com/show_bug.cgi?id=1329653
https://github.com/mjg59/linux/commit/a4a5ed2835e8ea042868b7401dced3f517cafa76