#VU28 Memory corruption in Oracle Linux and Oracle VM Server for x86 - CVE-2016-4998

Cybersecurity Help s.r.o.

Published: 2016-06-27 | Updated: 2018-11-22

Vulnerability identifier: #VU28

Vulnerability risk: Medium

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2016-4998

CWE-ID: CWE-119

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Oracle Linux
Operating systems & Components / Operating system
Oracle VM Server for x86
Server applications / Other server solutions

Vendor: Oracle

Description
The vulnerability allows a local user to cause denial of service conditions on the target system.

The vulnerability exists due to memory access error. A local user can cause the target sysetm to crash by issuing a specially crafted IPT_SO_SET_REPLACE setsockopt() call.

Successful exploitation of this vulnerability may result in the crash of the target sysetm.

Mitigation
The vendor has issued a fix (3.14.73, 4.4.14, 4.6.3).

Vulnerable software versions

Oracle Linux: 5 - 7

Oracle VM Server for x86: 3.2 - 3.4

External links
https://www.kernel.org/
https://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
https://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
https://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE Linux update for the Linux Kernel

Fedora 23 update for kernel

Fedora 22 update for kernel

Fedora 24 update for kernel