Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-2053
HistoryMay 02, 2016 - 10:59 a.m.

CVE-2016-2053

2016-05-0210:59:25
CWE-310
[email protected]
web.nvd.nist.gov
84
cve-2016-2053
linux kernel
denial of service
asn.1
vulnerability
nvd

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.8%

JSON

The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c.

Affected configurations

NVD
Node
linuxlinux_kernelRange<4.3

References

Related

ubuntucve 1
cvelist 1
debiancve 1
prion 1
nvd 1
virtuozzo 1
nessus 27
suse 23
openvas 18
oraclelinux 3
ibm 4
redhat 2
centos 1
androidsecurity 1
ubuntucve
ubuntucve
CVE-2016-2053
2016-05-02 00:00:00
cvelist
cvelist
CVE-2016-2053
2016-05-02 10:00:00
debiancve
debiancve
CVE-2016-2053
2016-05-02 10:59:25
prion
prion
Code injection
2016-05-02 10:59:00
nvd
nvd
CVE-2016-2053
2016-05-02 10:59:25
virtuozzo
virtuozzo
Important kernel security update: Virtuozzo ReadyKernel patch 14.0 for kernels 3.10.0-327.18.2.vz7.15.2 (Virtuozzo 7.0.0), 3.10.0-327.36.1.vz7.18.7 (Virtuozzo 7.0.1), and 3.10.0-327.36.1.vz7.20.18 (Virtuozzo 7.0.3)
2017-03-16 00:00:00
nessus
nessus
Virtuozzo 7 : readykernel-patch (VZA-2017-017)
2017-03-27 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2001-1)
2016-09-02 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2006-1)
2016-09-02 00:00:00
suse
suse
Security update for Linux Kernel Live Patch 6 for SLE 12 SP1 (important)
2016-08-09 17:34:25
Security update for Linux Kernel Live Patch 5 for SLE 12 SP1 (important)
2016-08-09 17:22:29
Security update for Linux Kernel Live Patch 13 for SLE 12 (important)
2016-08-09 17:19:35
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:2001-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2014-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2010-1)
2021-04-19 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-11-20 00:00:00
Unbreakable Enterprise kernel security update
2016-11-20 00:00:00
kernel security, bug fix, and enhancement update
2016-11-09 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in kernel affect Power Hardware Management Console
2021-09-23 01:45:02
Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2023-03-29 01:48:02
Security Bulletin: IBM Security Access Manager version 9.0.3.0 appliances are affected by multiple kernel vulnerabilities
2018-06-16 22:03:41
redhat
redhat
(RHSA-2016:2584) Important: kernel-rt security, bug fix, and enhancement update
2016-11-03 06:07:15
(RHSA-2016:2574) Important: kernel security, bug fix, and enhancement update
2016-11-03 06:07:14
centos
centos
kernel, perf, python security update
2016-11-25 15:59:02
androidsecurity
androidsecurity
Android Security Bulletinβ€”September 2016
2016-09-06 00:00:00

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.8%

JSON
Related for CVE-2016-2053
ubuntucve1cvelist1debiancve1prion1nvd1virtuozzo1nessus27suse23openvas18oraclelinux3ibm4redhat2centos1androidsecurity1