CVE-2016-4913

The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem.

Published: May 23, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-4913
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
canonical / ubuntu_linux	12.04	12.04.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	15.10	15.10.x
canonical / ubuntu_linux	14.04	14.04.x
linux / linux_kernel	3.3	3.10.102
linux / linux_kernel	4.5	4.5.5
linux / linux_kernel	-	3.2.81
linux / linux_kernel	3.15	3.16.36
linux / linux_kernel	3.17	3.18.34
linux / linux_kernel	3.19	4.1.25
linux / linux_kernel	3.11	3.12.60
linux / linux_kernel	3.13	3.14.70
linux / linux_kernel	4.2	4.4.11
oracle / linux	6	6.x
novell / suse_linux_enterprise_server	11.0-sp4	11.0-sp4.x
novell / suse_linux_enterprise_server	11.0-extra	11.0-extra.x
novell / suse_linux_enterprise_debuginfo	11.0-sp4	11.0-sp4.x
novell / suse_linux_enterprise_software_development_kit	11.0-sp4	11.0-sp4.x

Vulnerability Database

289,599

CVE-2016-4913