CVE-2016-1583
HIGHCVSS 7.8/10EPSS 1.39%
Last modified
CVE-2016-1583 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.. EPSS estimates a 1.39% chance of exploitation in the next 30 days.
Description
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | >= 2.6.19, < 3.18.54 | — |
| Linux | Linux Kernel | >= 3.19, < 4.4.14 | — |
| Linux | Linux Kernel | >= 4.5, < 4.6.3 | — |
| Novell | Suse Linux Enterprise Software Development Kit | 11.0 | Sp4 |
| Novell | Suse Linux Enterprise Software Development Kit | 12.0 | — |
| Novell | Suse Linux Enterprise Debuginfo | 11.0 | Sp4 |
| Novell | Suse Linux Enterprise Desktop | 12.0 | — |
| Novell | Suse Linux Enterprise Live Patching | 12.0 | — |
| Novell | Suse Linux Enterprise Module For Public Cloud | 12 | — |
| Novell | Suse Linux Enterprise Server | 11.0 | Extra |
| Novell | Suse Linux Enterprise Server | 12.0 | — |
| Novell | Suse Linux Enterprise Workstation Extension | 12.0 | — |
| Canonical | Ubuntu Linux | 12.04 | — |
| Canonical | Ubuntu Linux | 14.04 | — |
| Canonical | Ubuntu Linux | 15.10 | — |
| Canonical | Ubuntu Linux | 16.04 | — |
| Debian | Debian Linux | 8.0 | — |
References
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.htmlThird Party Advisory, VDB Entry
- http://rhn.redhat.com/errata/RHSA-2016-2124.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2016-2766.htmlThird Party Advisory
- http://www.debian.org/security/2016/dsa-3607Third Party Advisory
- http://www.openwall.com/lists/oss-security/2016/06/10/8Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2016/06/22/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/91157Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1036763Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2996-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2997-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2998-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2999-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3000-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3001-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3002-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3003-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3004-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3005-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3006-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3007-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3008-1Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:2760Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1344721Issue Tracking, VDB Entry
- https://www.exploit-db.com/exploits/39992/Exploit, Third Party Advisory, VDB Entry
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.3Release Notes, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.htmlThird Party Advisory, VDB Entry
- http://rhn.redhat.com/errata/RHSA-2016-2124.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2016-2766.htmlThird Party Advisory
- http://www.debian.org/security/2016/dsa-3607Third Party Advisory
- http://www.openwall.com/lists/oss-security/2016/06/10/8Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2016/06/22/1Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/91157Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1036763Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2996-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2997-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2998-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2999-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3000-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3001-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3002-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3003-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3004-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3005-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3006-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3007-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-3008-1Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:2760Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1344721Issue Tracking, VDB Entry
- https://www.exploit-db.com/exploits/39992/Exploit, Third Party Advisory, VDB Entry
- https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.3Release Notes, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-1583?
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.
How severe is CVE-2016-1583?
CVE-2016-1583 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 1.39% probability of exploitation in the next 30 days.
How do I fix CVE-2016-1583?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2016-1583?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST