Lucene search

Androidvulnerabilities.orgANDROID:CVE-2016-0728

HistoryMar 01, 2016 - 12:00 a.m.

CVE-2016-0728

2016-03-0100:00:00

androidvulnerabilities.org

www.androidvulnerabilities.org

0.0004 Low

EPSS

Percentile

0.4%

JSON

The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted keyctl commands.

CPENameOperatorVersion
androidlt4.4.4
androidlt5.1.1
androidlt5.0.2
androidlt6.0.1
androidlt6.0

Name	Operator	Version
android	lt	4.4.4
android	lt	5.1.1
android	lt	5.0.2
android	lt	6.0.1
android	lt	6.0

References

nvd.nist.gov/vuln/data-feeds

source.android.com/security/bulletin/2016-03-01.html

SOL01948202 - Linux kernel vulnerability CVE-2016-0728

2016-01-22 00:00:00

K01948202 : Linux kernel vulnerability CVE-2016-0728

2016-01-22 00:00:00

nessus

Ubuntu 14.04 LTS : Linux kernel (Wily HWE) vulnerability (USN-2872-2)

2016-01-20 00:00:00

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerability (USN-2873-1)

2016-01-20 00:00:00

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerability (USN-2871-2)

2016-01-20 00:00:00

openvas

Oracle: Security Advisory (ELSA-2016-0064)

2016-01-26 00:00:00

Ubuntu: Security Advisory (USN-2873-1)

2016-01-20 00:00:00

Ubuntu: Security Advisory (USN-2870-1)

2016-01-20 00:00:00

centos

kernel, perf, python security update

2016-01-26 02:08:06

exploitpack

Linux Kernel 4.4.1 - REFCOUNT Overflow Use-After-Free in Keyrings Local Privilege Escalation (1)

2016-01-19 00:00:00

Linux Kernel 4.4.1 - REFCOUNT Overflow Use-After-Free in Keyrings Local Privilege Escalation (2)

2016-01-19 00:00:00

checkpoint_security

Check Point Response to CVE-2016-0728 kernel: Possible use-after-free vulnerability in keyring facility

2016-01-20 21:24:26

ibm

Security Bulletin: Vulnerability in Linux Kernel affects PowerKVM (CVE-2016-0728)

2018-06-18 01:30:28

Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM

2018-06-18 01:33:24

mageia

Updated kernel-tmb packages fix security vulnerability

2016-01-21 09:09:50

Updated kernel packages fix security vulnerability

2016-01-21 09:09:50

Updated kernel-linus packages fix security vulnerability

2016-01-21 09:09:50

nvd

CVE-2016-0728

2016-02-08 03:59:10

CVE-2016-7028

2016-02-01 23:59:00

archlinux

linux-lts: privilege escalation

2016-01-25 00:00:00

linux: privilege escalation

2016-01-20 00:00:00

threatpost

Linux Kernel Privilege Escalation Flaw Patched

2016-01-19 07:47:18

Android Devices Linux Zero Day Kernel Vulnerability

2016-01-21 11:45:56

Google Fixes Critical Mediaserver Bug, Again

2016-03-07 14:00:02

cvelist

CVE-2016-0728

2016-02-08 02:00:00

oraclelinux

Unbreakable Enterprise kernel security update

2016-01-20 00:00:00

kernel-uek security update

2016-01-20 00:00:00

kernel security update

2016-01-25 00:00:00

redhat

(RHSA-2016:0065) Important: kernel-rt security update

2016-01-25 18:47:39

(RHSA-2016:0064) Important: kernel security update

2016-01-25 18:47:36

(RHSA-2016:0103) Important: kernel security, bug fix, and enhancement update

2016-02-02 16:05:39

suse

Security update for Kernel live patch 10 (important)

2016-02-04 19:18:40

Security update for the Linux Kernel (important)

2016-01-20 21:11:28

Security update for the Linux Kernel (important)

2016-01-22 18:12:30

packetstorm

Linux Kernel REFCOUNT Overflow / Use-After-Free

2016-01-20 00:00:00

ubuntu

Linux kernel (Raspberry Pi 2) vulnerability

2016-01-19 00:00:00

Linux kernel vulnerability

2016-01-19 00:00:00

Linux kernel vulnerability

2016-01-19 00:00:00

altlinux

Security fix for the ALT Linux 7 package kernel-image-std-def version 1:3.14.58-alt0.M70P.2

2016-01-19 00:00:00

prion

Integer overflow

2016-02-08 03:59:00

Design/Logic Flaw

2016-02-01 23:59:00

ubuntucve

CVE-2016-0728

2016-01-19 00:00:00

cisa

Linux Kernel Vulnerability

2016-01-19 00:00:00

veracode

Integer Overflow

2019-05-02 05:20:50

Improper Access Control

2019-05-02 05:20:50

Denial Of Service (DoS)

2019-05-02 05:20:50

amazon

Medium: kernel

2016-01-19 17:07:00

seebug

ACTi E31 surveillance Cameras 弱密码漏洞

2016-01-28 00:00:00

Linux内核 Keyrings 引用计数溢出 UAF 漏洞

2016-05-20 00:00:00

zdt

Linux Kernel 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Privilege Escalation (2)

2016-01-19 00:00:00

Linux Kernel 4.4.1 - REFCOUNT Overflow/Use-After-Free in Keyrings Privilege Escalation (1)

2016-01-19 00:00:00

thn

Zero-Day Flaw Found in 'Linux Kernel' leaves Millions Vulnerable

2016-01-19 06:30:00

symantec

SA112 : Linux Kernel Keyring Privilege Escalation

2016-02-25 08:00:00

debiancve

CVE-2016-0728

2016-02-08 03:59:10

cve

CVE-2016-0728

2016-02-08 03:59:10

CVE-2016-7028

2022-10-03 16:16:28

chrome

Stable Channel Update for Chrome OS

2016-01-26 00:00:00

exploitdb

Linux Kernel 4.4.1 - REFCOUNT Overflow Use-After-Free in Keyrings Local Privilege Escalation (1)

2016-01-19 00:00:00

Linux Kernel 4.4.1 - REFCOUNT Overflow Use-After-Free in Keyrings Local Privilege Escalation (2)

2016-01-19 00:00:00

HPSBHF03436 rev.2 - HP Thin Client with ThinPro OS, running Linux, Local Elevated Privileges

2016-02-26 00:00:00

fedora

[SECURITY] Fedora 23 Update: kernel-4.3.3-303.fc23

2016-01-26 18:29:15

[SECURITY] Fedora 22 Update: kernel-4.3.4-200.fc22

2016-02-01 06:34:15

debian

[SECURITY] [DSA 3448-1] linux security update

2016-01-19 12:40:10

[SECURITY] [DSA 3448-1] linux security update

2016-01-19 12:40:10

osv

linux - security update

2016-01-19 00:00:00

kitploit

Kernelpop - Kernel Privilege Escalation Enumeration And Exploitation Framework

2017-11-04 13:30:00

androidsecurity

Nexus Security Bulletin - March 2016

2016-03-07 00:00:00

lenovo

AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US

2020-04-13 19:22:04

0.0004 Low

EPSS

Percentile

0.4%

JSON

CVE-2016-0728

References

Related