CVE-2016-6197

Published: Aug 6, 2016Modified: May 6, 2026

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

fs/overlayfs/dir.c in the OverlayFS filesystem implementation in the Linux kernel before 4.6 does not properly verify the upper dentry before proceeding with unlink and rename system-call processing, which allows local users to cause a denial of service (system crash) via a rename system call that specifies a self-hardlink.

Affected (3)

Products: Oracle: Linux, Vm Server · Linux: Linux Kernel

2 products

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Linux	Version 6

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Up to 4.5.7

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Vm Server	Version 3.4

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (28)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=11f3710417d026ea2f4fcf362d866342c5274185

Source: cve@mitre.org

Issue TrackingPatch

http://rhn.redhat.com/errata/RHSA-2016-1847.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2016-1875.html

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2016/07/11/8

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: cve@mitre.org

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/91709

Source: cve@mitre.org

http://www.securitytracker.com/id/1036273

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-3070-1

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-3070-2

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-3070-3

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-3070-4

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=1355650

Source: cve@mitre.org

Issue Tracking

https://github.com/torvalds/linux/commit/11f3710417d026ea2f4fcf362d866342c5274185

Source: cve@mitre.org

Issue TrackingPatch

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=11f3710417d026ea2f4fcf362d866342c5274185

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatch

http://rhn.redhat.com/errata/RHSA-2016-1847.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2016-1875.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2016/07/11/8

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/91709

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1036273

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3070-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3070-2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3070-3

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-3070-4

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=1355650

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://github.com/torvalds/linux/commit/11f3710417d026ea2f4fcf362d866342c5274185

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatch

Timeline

No history available yet.