Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM289F46B747F4C8F26E8F8D17623E34EDE1DB7595184FCDCC87FEDCC356AC9965
HistoryJun 16, 2018 - 10:03 p.m.

Security Bulletin: IBM Security Access Manager appliances are affected by kernel vulnerabilities

2018-06-1622:03:36
www.ibm.com
98

0.736 High

EPSS

Percentile

98.1%

JSON

Summary

The IBM Security Access Manager appliance has addressed the following vulnerabilities.

Vulnerability Details

CVEID: CVE-2016-9555**
DESCRIPTION:** Linux Kernel is vulnerable to a denial of service, caused by an out-of-bounds access error in sctp_sf_ootb(). By sending specially crafted data, a remote attacker could exploit this vulnerability to obtain a sensitive information or cause a denial of service.
CVSS Base Score: 6.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/119185 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)

CVEID: CVE-2016-9084**
DESCRIPTION:** Linux Kernel is vulnerable to a denial of service, caused by the improper use of the kzalloc function by vfio_pci_intrs.c. A local attacker could exploit this vulnerability to trigger an integer overflow and cause a denial of service.
CVSS Base Score: 4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/119406 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID: CVE-2016-9083**
DESCRIPTION:** Linux Kernel is vulnerable to a denial of service, caused by a mmeory corruption error in vfio_pci.c. A local attacker could exploit this vulnerability to bypass integer overflow checks and cause a denial of service.
CVSS Base Score: 6.2
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/119407 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID: CVE-2016-7117**
DESCRIPTION:** Linux Kernel could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in __sys_recvmmsg function in net/socket.c. An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base Score: 7.3
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/117765 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

CVEID: CVE-2016-6828**
DESCRIPTION:** Linux Kernel is vulnerable to a denial of service, caused by the failure to properly maintain certain SACK state in tcp_check_send_head function in include/net/tcp.h. By executing a specially-crafted SACK option, an attacker could exploit this vulnerability to cause a denial of service.
CVSS Base Score: 6.2
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/118135 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected IBM Security Access Manager Appliance

|

Affected Versions

—|—
IBM Security Access Manager| 9.0.3.0

Remediation/Fixes

Product

|

VRMF

|

APAR

|

Remediation / First Fix

—|—|—|—
IBM Security Access Manager| 9.0.3.0| IJ00229| Upgrade to 9.0.3.1:
9.0.3-ISS-ISAM-FP0001

Workarounds and Mitigations

None.

CPENameOperatorVersion
ibm security access managereq9.0.3

Related

ibm 2
redhat 14
centos 5
nessus 62
openvas 27
oraclelinux 11
fedora 5
suse 18
amazon 2
ubuntucve 5
veracode 5
cve 5
cvelist 5
nvd 5
prion 5
debiancve 5
redhatcve 2
exploitpack 1
ubuntu 4
arista 1
zdt 1
packetstorm 1
f5 4
android 2
broadcom 1
exploitdb 1
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel
2018-06-16 22:02:07
Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM
2018-06-18 01:37:19
redhat
redhat
(RHSA-2017:0086) Important: kernel security, bug fix, and enhancement update
2017-01-17 15:24:29
(RHSA-2017:0091) Important: kernel-rt security and bug fix update
2017-01-17 15:24:41
(RHSA-2017:0113) Important: kernel-rt security and bug fix update
2017-01-17 17:39:19
centos
centos
kernel, perf, python security update
2017-01-19 13:30:14
kernel, perf, python security update
2017-01-12 15:47:38
kernel, perf, python security update
2017-03-06 15:04:15
nessus
nessus
Scientific Linux Security Update : kernel on SL7.x x86_64 (20170117)
2017-01-18 00:00:00
RHEL 7 : kernel (RHSA-2017:0086)
2017-01-18 00:00:00
Oracle Linux 7 : kernel (ELSA-2017-0086)
2017-01-18 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2017:0086-01
2017-01-18 00:00:00
CentOS Update for kernel CESA-2017:0086 centos7
2017-01-20 00:00:00
Fedora Update for kernel FEDORA-2016-96d276367e
2016-12-02 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2017-01-17 00:00:00
kernel security and bug fix update
2017-01-10 00:00:00
kernel security, bug fix, and enhancement update
2017-03-02 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: kernel-4.8.6-201.fc24
2016-11-07 23:34:12
[SECURITY] Fedora 23 Update: kernel-4.8.8-100.fc23
2016-11-24 08:29:52
[SECURITY] Fedora 23 Update: kernel-4.6.7-200.fc23
2016-08-23 15:24:07
suse
suse
Security update for Linux Kernel Live Patch 1 for SLE 12 SP1 (important)
2016-12-12 19:14:13
Security update for Linux Kernel Live Patch 10 for SLE 12 (important)
2016-12-22 19:08:18
Security update for Linux Kernel Live Patch 11 for SLE 12 (important)
2016-12-13 18:07:52
amazon
amazon
Important: kernel
2016-12-06 23:44:00
Medium: kernel
2016-09-01 18:00:00
ubuntucve
ubuntucve
CVE-2016-9084
2016-11-27 00:00:00
CVE-2016-9083
2016-11-27 00:00:00
CVE-2016-9555
2016-11-27 00:00:00
veracode
veracode
Integer Overflow
2019-05-02 06:32:55
Memory Corruption
2019-05-02 06:32:55
Denial Of Service (DoS)
2019-05-02 06:09:19
cve
cve
CVE-2016-9084
2016-11-28 03:59:12
CVE-2016-9083
2016-11-28 03:59:11
CVE-2016-9555
2016-11-28 03:59:17
cvelist
cvelist
CVE-2016-9084
2016-11-28 03:01:00
CVE-2016-9083
2016-11-28 03:01:00
CVE-2016-9555
2016-11-28 03:01:00
nvd
nvd
CVE-2016-9084
2016-11-28 03:59:12
CVE-2016-9083
2016-11-28 03:59:11
CVE-2016-7117
2016-10-10 11:00:13
prion
prion
Integer overflow
2016-11-28 03:59:00
Integer overflow
2016-11-28 03:59:00
Out-of-bounds
2016-11-28 03:59:00
debiancve
debiancve
CVE-2016-9084
2016-11-28 03:59:12
CVE-2016-9083
2016-11-28 03:59:11
CVE-2016-9555
2016-11-28 03:59:17
redhatcve
redhatcve
CVE-2016-9555
2016-11-23 17:19:15
CVE-2016-6828
2016-08-18 21:03:31
exploitpack
exploitpack
Linux Kernel - TCP Related Read Use-After-Free
2016-08-18 00:00:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerability
2017-02-03 00:00:00
Linux kernel vulnerability
2017-02-03 00:00:00
Linux kernel vulnerabilities
2017-02-03 00:00:00
arista
arista
Security Advisory 0028
2017-05-15 00:00:00
zdt
zdt
Linux Kernel - TCP Related Read Use-After-Free Exploit
2016-11-08 00:00:00
packetstorm
packetstorm
Linux Kernel TCP Related Read Use-After-Free
2016-11-09 00:00:00
f5
f5
K54095660 : Linux kernel vulnerability CVE-2016-9555
2017-02-22 00:00:00
K62442245 : Kernel vulnerability CVE-2016-6828
2016-12-21 00:00:00
K51201255 : Linux kernel vulnerability CVE-2016-7117
2016-11-08 00:00:00
android
android
CVE-2016-7117
2016-10-01 00:00:00
CVE-2016-6828
2016-11-01 00:00:00
broadcom
broadcom
CVE-2016-7117 - Use-after-free vulnerability in the Linux kernel
2023-05-02 00:00:00
exploitdb
exploitdb
Linux Kernel - TCP Related Read Use-After-Free
2016-08-18 00:00:00

0.736 High

EPSS

Percentile

98.1%

JSON
Related for 289F46B747F4C8F26E8F8D17623E34EDE1DB7595184FCDCC87FEDCC356AC9965
ibm2redhat14centos5nessus62openvas27oraclelinux11fedora5suse18amazon2ubuntucve5veracode5cve5cvelist5nvd5prion5debiancve5redhatcve2exploitpack1ubuntu4arista1zdt1packetstorm1f54android2broadcom1exploitdb1