CVE-2016-1583

Published: Jun 27, 2016Modified: May 6, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

Affected (22)

Products: Linux: Linux Kernel · Novell: Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Desktop, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Module For Public Cloud, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Workstation Extension · Canonical: Ubuntu Linux · +1 more

Show all products

Linux: Linux Kernel · Novell: Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Desktop, Suse Linux Enterprise Live Patching, Suse Linux Enterprise Module For Public Cloud, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit, Suse Linux Enterprise Workstation Extension · Canonical: Ubuntu Linux · Debian: Debian Linux

Linux

1 product

Linux Kernel

Novell

7 products

Suse Linux Enterprise Debuginfo

Suse Linux Enterprise Desktop

Suse Linux Enterprise Live Patching

Suse Linux Enterprise Module For Public Cloud

Suse Linux Enterprise Server

Suse Linux Enterprise Software Development Kit

Suse Linux Enterprise Workstation Extension

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 2.6.19 to 3.18.54
Linux Linux Kernel	From 3.19 to 4.4.14
Linux Linux Kernel	From 4.5 to 4.6.3

Configuration B

14 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Debuginfo	Version 11.0 sp4
Novell Suse Linux Enterprise Desktop	Version 12.0
Novell Suse Linux Enterprise Desktop	Version 12.0 sp1
Novell Suse Linux Enterprise Live Patching	Version 12.0
Novell Suse Linux Enterprise Module For Public Cloud	Version 12
Novell Suse Linux Enterprise Server	Version 11.0 extra
Novell Suse Linux Enterprise Server	Version 11.0 sp4
Novell Suse Linux Enterprise Server	Version 12.0
Novell Suse Linux Enterprise Server	Version 12.0 sp1
Novell Suse Linux Enterprise Software Development Kit	Version 11.0 sp4
Novell Suse Linux Enterprise Software Development Kit	Version 12.0
Novell Suse Linux Enterprise Software Development Kit	Version 12.0 sp1
Novell Suse Linux Enterprise Workstation Extension	Version 12.0
Novell Suse Linux Enterprise Workstation Extension	Version 12.0 sp1

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.10
Canonical Ubuntu Linux	Version 16.04

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (100)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87

Source: security@ubuntu.com

Vendor Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6d

Source: security@ubuntu.com

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.html

Source: security@ubuntu.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

Source: security@ubuntu.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html

Source: security@ubuntu.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.html

Source: security@ubuntu.com

Third Party AdvisoryVDB Entry

http://rhn.redhat.com/errata/RHSA-2016-2124.html

Source: security@ubuntu.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-2766.html

Source: security@ubuntu.com

Third Party Advisory

http://www.debian.org/security/2016/dsa-3607

Source: security@ubuntu.com

Third Party Advisory

http://www.openwall.com/lists/oss-security/2016/06/10/8

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2016/06/22/1

Source: security@ubuntu.com

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/91157

Source: security@ubuntu.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036763

Source: security@ubuntu.com

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2996-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2997-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2998-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2999-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3000-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3001-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3002-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3003-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3004-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3005-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3006-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3007-1

Source: security@ubuntu.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-3008-1

Source: security@ubuntu.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:2760

Source: security@ubuntu.com

Third Party Advisory

https://bugs.chromium.org/p/project-zero/issues/detail?id=836

Source: security@ubuntu.com

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1344721

Source: security@ubuntu.com

Issue TrackingVDB Entry

https://github.com/torvalds/linux/commit/2f36db71009304b3f0b95afacd8eba1f9f046b87

Source: security@ubuntu.com

Vendor Advisory

https://github.com/torvalds/linux/commit/f0fe970df3838c202ef6c07a4c2b36838ef0a88b

Source: security@ubuntu.com

Third Party Advisory

https://github.com/torvalds/linux/commit/f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6d

Source: security@ubuntu.com

Vendor Advisory

https://www.exploit-db.com/exploits/39992/

Source: security@ubuntu.com

ExploitThird Party AdvisoryVDB Entry

https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.3

Source: security@ubuntu.com

Release NotesVendor Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87