CVE-2016-8666

The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
microfocusCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
VendorProductVersion
linuxlinux_kernel
3.14 ≤
𝑥
< 3.16.35
linuxlinux_kernel
3.17 ≤
𝑥
< 3.18.47
linuxlinux_kernel
3.19 ≤
𝑥
< 4.1.38
linuxlinux_kernel
4.2 ≤
𝑥
< 4.4.29
linuxlinux_kernel
4.5 ≤
𝑥
< 4.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
wheezy
not-affected
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
sid
6.11.5-1
fixed
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
yakkety
not-affected
xenial
Fixed 4.4.0-42.62
released
trusty
Fixed 3.13.0-98.145
released
precise
not-affected
linux-armadaxp
yakkety
dne
xenial
dne
trusty
dne
precise
not-affected
linux-aws
yakkety
dne
xenial
not-affected
trusty
not-affected
precise
dne
linux-flo
yakkety
not-affected
xenial
not-affected
trusty
dne
precise
dne
linux-gke
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-goldfish
yakkety
not-affected
xenial
not-affected
trusty
dne
precise
dne
linux-grouper
yakkety
dne
xenial
dne
trusty
dne
precise
dne
linux-hwe
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-hwe-edge
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-linaro-omap
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-linaro-shared
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-linaro-vexpress
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-lts-quantal
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-lts-raring
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-lts-saucy
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-lts-trusty
yakkety
dne
xenial
dne
trusty
dne
precise
Fixed 3.13.0-98.145~precise1
released
linux-lts-utopic
yakkety
dne
xenial
dne
trusty
dne
precise
dne
linux-lts-vivid
yakkety
dne
xenial
dne
trusty
Fixed 3.19.0-71.79~14.04.1
released
precise
dne
linux-lts-wily
yakkety
dne
xenial
dne
trusty
dne
precise
dne
linux-lts-xenial
yakkety
dne
xenial
dne
trusty
Fixed 4.4.0-42.62~14.04.1
released
precise
dne
linux-maguro
yakkety
dne
xenial
dne
trusty
dne
precise
dne
linux-mako
yakkety
not-affected
xenial
not-affected
trusty
dne
precise
dne
linux-manta
yakkety
dne
xenial
dne
trusty
dne
precise
dne
linux-qcm-msm
yakkety
dne
xenial
dne
trusty
dne
precise
ignored
linux-raspi2
yakkety
not-affected
xenial
Fixed 4.4.0-1027.33
released
trusty
dne
precise
dne
linux-snapdragon
yakkety
Fixed 4.4.0-1032.36
released
xenial
Fixed 4.4.0-1030.33
released
trusty
dne
precise
dne
linux-ti-omap4
yakkety
dne
xenial
dne
trusty
dne
precise
not-affected
Common Weakness Enumeration
References
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fac8e0f579695a3ecbc4d3cac369139d7f819971
http://rhn.redhat.com/errata/RHSA-2016-2047.html
http://rhn.redhat.com/errata/RHSA-2016-2107.html
http://rhn.redhat.com/errata/RHSA-2016-2110.html
http://rhn.redhat.com/errata/RHSA-2017-0004.html
http://www.openwall.com/lists/oss-security/2016/10/13/11
http://www.securityfocus.com/bid/93562
https://access.redhat.com/errata/RHSA-2017:0372
https://bto.bluecoat.com/security-advisory/sa134
https://bugzilla.redhat.com/show_bug.cgi?id=1384991
https://bugzilla.suse.com/show_bug.cgi?id=1001486
https://github.com/torvalds/linux/commit/fac8e0f579695a3ecbc4d3cac369139d7f819971
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fac8e0f579695a3ecbc4d3cac369139d7f819971
http://rhn.redhat.com/errata/RHSA-2016-2047.html
http://rhn.redhat.com/errata/RHSA-2016-2107.html
http://rhn.redhat.com/errata/RHSA-2016-2110.html
http://rhn.redhat.com/errata/RHSA-2017-0004.html
http://www.openwall.com/lists/oss-security/2016/10/13/11
http://www.securityfocus.com/bid/93562
https://access.redhat.com/errata/RHSA-2017:0372
https://bto.bluecoat.com/security-advisory/sa134
https://bugzilla.redhat.com/show_bug.cgi?id=1384991
https://bugzilla.suse.com/show_bug.cgi?id=1001486
https://github.com/torvalds/linux/commit/fac8e0f579695a3ecbc4d3cac369139d7f819971