Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka “Dirty COW.”

OSVersionArchitecturePackageVersionFilename
Debian12alllinux< 4.7.8-1linux_4.7.8-1_all.deb
Debian11alllinux< 4.7.8-1linux_4.7.8-1_all.deb
Debian999alllinux< 4.7.8-1linux_4.7.8-1_all.deb
Debian13alllinux< 4.7.8-1linux_4.7.8-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	linux	< 4.7.8-1	linux_4.7.8-1_all.deb
Debian	11	all	linux	< 4.7.8-1	linux_4.7.8-1_all.deb
Debian	999	all	linux	< 4.7.8-1	linux_4.7.8-1_all.deb
Debian	13	all	linux	< 4.7.8-1	linux_4.7.8-1_all.deb

suse 10

nessus 47

archlinux 3

ubuntu 10

ibm 7

openvas 31

canvas 1

f5 2

redhat 11

cisa 1

packetstorm 2

saint 4

cve 2

oraclelinux 7

fedora 3

centos 3

veracode 1

zdt 7

ubuntucve 1

seebug 2

huawei 1

securelist 1

thn 5

android 2

chrome 1

cvelist 1

exploitdb 5

paloalto 1

amazon 1

fortinet 1

prion 1

vmware 2

cisa_kev 1

cert 1

slackware 1

threatpost 3

arista 1

cisco 1

nvd 2

attackerkb 1

altlinux 1

myhack58 1

githubexploit 7

redhatcve 1

malwarebytes 1

suse

Security update for Linux Kernel Live Patch 15 for SLE 12 (important)

2016-10-27 01:06:19

Security update for the Linux Kernel (important)

2016-10-24 17:08:24

Security update for the Linux Kernel (important)

2016-10-21 21:08:21

nessus

F5 Networks BIG-IP : Linux privilege-escalation vulnerability (K10558632) (Dirty COW)

2017-02-22 00:00:00

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3633)

2016-10-24 00:00:00

SUSE SLES12 Security Update : kernel (SUSE-SU-2016:2593-1) (Dirty COW)

2016-10-26 00:00:00

archlinux

[ASA-201610-11] linux-lts: privilege escalation

2016-10-21 00:00:00

[ASA-201610-14] linux: privilege escalation

2016-10-22 00:00:00

[ASA-201610-16] linux-grsec: privilege escalation

2016-10-24 00:00:00

ubuntu

Linux kernel (Raspberry Pi 2) vulnerability

2016-10-20 00:00:00

Linux kernel vulnerability

2016-10-20 00:00:00

Linux kernel vulnerability

2016-10-20 00:00:00

ibm

Security Bulletin: Dirty COW Vulnerability (CVE-2016-5195)

2018-12-08 04:55:34

Security Bulletin: IBM Security Access Manager appliances may be affected by a kernel vulnerability known as the Dirty COW bug (CVE-2016-5195)

2018-06-16 21:50:05

Security Bulletin: Vulnerability in Linux Kernel affects ProtecTIER: Dirty COW vulnerability (CVE-2016-5195)

2022-02-16 22:09:18

openvas

Ubuntu: Security Advisory (USN-3107-2)

2016-12-05 00:00:00

SUSE: Security Advisory (SUSE-SU-2016:2592-1)

2021-04-19 00:00:00

Fedora Update for kernel FEDORA-2016-db4b75b352

2016-11-14 00:00:00

canvas

Immunity Canvas: LINUX_FOLL_WRITE_COW

2016-11-10 21:59:00

SOL10558632 - Linux privilege-escalation vulnerability (Dirty COW) CVE-2016-5195

2016-10-21 00:00:00

K10558632 : Linux privilege-escalation vulnerability CVE-2016-5195

2016-10-21 00:00:00

redhat

(RHSA-2016:2132) Important: kernel security and bug fix update

2016-11-01 10:16:02

(RHSA-2016:2126) Important: kernel security update

2016-10-31 00:00:00

(RHSA-2016:2098) Important: kernel security update

2016-10-24 12:01:05

cisa

Linux Kernel Vulnerability

2016-10-21 00:00:00

packetstorm

Linux Kernel Dirty COW PTRACE_POKEDATA Privilege Escalation

2016-11-28 00:00:00

Linux Kernel Dirty COW PTRACE_POKEDATA Privilege Escalation

2016-11-25 00:00:00

saint

Linux Dirty COW Local File Overwrite

2016-10-27 00:00:00

Linux Dirty COW Local File Overwrite

2016-10-27 00:00:00

Linux Dirty COW Local File Overwrite

2016-10-27 00:00:00

cve

CVE-2016-5195

2016-11-10 21:59:00

CVE-2016-3919

2016-11-25 18:59:00

oraclelinux

Unbreakable Enterprise kernel security update

2016-10-21 00:00:00

kernel security update

2016-10-24 00:00:00

Unbreakable Enterprise kernel security update

2016-10-21 00:00:00

fedora

[SECURITY] Fedora 24 Update: kernel-4.7.9-200.fc24

2016-10-22 17:20:39

[SECURITY] Fedora 25 Update: kernel-4.8.3-300.fc25

2016-10-22 12:53:27

[SECURITY] Fedora 23 Update: kernel-4.7.9-100.fc23

2016-10-23 22:49:20

centos

kernel, perf, python security update

2016-10-25 11:17:10

kernel, perf, python security update

2016-10-26 07:33:13

kernel security update

2016-10-28 13:34:09

veracode

Arbitrary Code Execution

2019-01-15 09:14:05

zdt

Linux Kernel 2.6.22 < 3.9 - Dirty COW PTRACE_POKEDATA Race Condition Privilege Escalation (/etc/p

2016-11-29 00:00:00

DirtyCow Linux Kernel Race Condition Exploit

2016-10-22 00:00:00

Linux Kernel 2.6.22 < 3.9 - Dirty COW PTRACE_POKEDATA Race Condition PoC (Write Access) Exploit

2016-11-29 00:00:00

ubuntucve

CVE-2016-5195

2016-10-19 00:00:00

seebug

Linux kernel 2.6.22 < 3.9 elevation of privilege vulnerability (Dirty COW)

2016-10-22 00:00:00

"Huge Dirty COW" (CVE-2017–1000405)

2017-11-30 00:00:00

huawei

Security Advisory - Dirty COW Vulnerability in Huawei Products

2016-12-07 00:00:00

securelist

Mobile malware evolution 2019

2020-02-25 10:00:43

thn

Dirty COW — Critical Linux Kernel Flaw Being Exploited in the Wild

2016-10-20 23:02:00

'Exodus' Surveillance Malware Found Targeting Apple iOS Users

2019-04-09 07:19:00

RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations

2024-06-24 07:49:00

android

CVE-2016-5195

2016-11-01 00:00:00

dirtyc0w

2016-10-13 00:00:00

chrome

Stable Channel Update for Chrome OS

2016-10-26 00:00:00

cvelist

CVE-2016-5195

2016-11-10 21:00:00

exploitdb

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW /proc/self/mem' Race Condition Privilege Escalation (/etc/passwd Method)

2016-11-27 00:00:00

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' /proc/self/mem Race Condition (Write Access Method)

2016-10-19 00:00:00

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW PTRACE_POKEDATA' Race Condition (Write Access Method)

2016-10-26 00:00:00

paloalto

Kernel Vulnerability

2017-02-21 19:30:00

amazon

Critical: kernel

2016-10-20 04:11:00

fortinet

Linux Kernel Dirty Cow Vulnerability

2016-11-09 00:00:00

prion

Race condition

2016-11-10 21:59:00

vmware

VMware product updates address local privilege escalation vulnerability in Linux kernel

2016-11-09 00:00:00

VMware product updates address local privilege escalation vulnerability in Linux kernel

2016-11-09 00:00:00

cisa_kev

Linux Kernel Race Condition Vulnerability

2022-03-03 00:00:00

cert

Linux kernel memory subsystem copy on write mechanism contains a race condition vulnerability

2016-10-21 00:00:00

slackware

[slackware-security] kernel

2016-11-01 03:40:05

threatpost

Serious Dirty Cow Linux Vulnerability Under Attack

2016-10-21 11:21:36

Flaw Found In Dirty COW Patch

2017-12-01 11:43:06

Dirty Cow Vulnerability Patched in Android Security Bulletin

2016-12-05 15:32:51

arista

Security Advisory 0026

2016-10-21 00:00:00

cisco

Vulnerability in Linux Kernel Affecting Cisco Products: October 2016

2016-10-26 15:00:00

nvd

CVE-2016-5195

2016-11-10 21:59:00

CVE-2016-3919

2016-11-25 18:59:00

attackerkb

CVE-2016-5195

2016-11-10 00:00:00

altlinux

Security fix for the ALT Linux 7 package kernel-image-std-def version 1:3.14.79-alt0.M70P.2

2016-10-25 00:00:00

myhack58

CVE-2 0 1 6-5 1 9 5 dirty cattle vulnerability: the Linux kernel through kill to mention the right vulnerability-vulnerability warning-the black bar safety net

2016-10-21 00:00:00

githubexploit

Exploit for Improper Initialization in Linux Linux Kernel

2022-04-15 09:11:43

Exploit for Improper Initialization in Linux Linux Kernel

2024-06-04 13:25:04

Exploit for Improper Initialization in Linux Linux Kernel

2022-03-10 01:18:26

redhatcve

CVE-2017-1000405

2017-11-30 07:49:34

malwarebytes

Linux “Dirty Pipe” vulnerability gives unprivileged users root access

2022-03-11 14:38:30

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.817

Percentile

98.4%

JSON

Related for DEBIANCVE:CVE-2016-5195