CVE - CVE-2016-0723

CVE-ID
CVE-2016-0723	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free and system crash) by making a TIOCGETD ioctl call during processing of a TIOCSETD ioctl call.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1035695 URL:http://www.securitytracker.com/id/1035695 MISC:82950 URL:http://www.securityfocus.com/bid/82950 MISC:DSA-3448 URL:http://www.debian.org/security/2016/dsa-3448 MISC:DSA-3503 URL:http://www.debian.org/security/2016/dsa-3503 MISC:FEDORA-2016-2f25d12c51 URL:http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176464.html MISC:FEDORA-2016-5d43766e33 URL:http://lists.fedoraproject.org/pipermail/package-announce/2016-February/176484.html MISC:SUSE-SU-2016:0911 URL:http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html MISC:SUSE-SU-2016:1102 URL:http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html MISC:SUSE-SU-2016:1764 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html MISC:SUSE-SU-2016:2074 URL:http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html MISC:USN-2929-1 URL:http://www.ubuntu.com/usn/USN-2929-1 MISC:USN-2929-2 URL:http://www.ubuntu.com/usn/USN-2929-2 MISC:USN-2930-1 URL:http://www.ubuntu.com/usn/USN-2930-1 MISC:USN-2930-2 URL:http://www.ubuntu.com/usn/USN-2930-2 MISC:USN-2930-3 URL:http://www.ubuntu.com/usn/USN-2930-3 MISC:USN-2932-1 URL:http://www.ubuntu.com/usn/USN-2932-1 MISC:USN-2948-1 URL:http://www.ubuntu.com/usn/USN-2948-1 MISC:USN-2948-2 URL:http://www.ubuntu.com/usn/USN-2948-2 MISC:USN-2967-1 URL:http://www.ubuntu.com/usn/USN-2967-1 MISC:USN-2967-2 URL:http://www.ubuntu.com/usn/USN-2967-2 MISC:http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5c17c861a357e9458001f021a7afa7aab9937439 URL:http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5c17c861a357e9458001f021a7afa7aab9937439 MISC:http://source.android.com/security/bulletin/2016-07-01.html URL:http://source.android.com/security/bulletin/2016-07-01.html MISC:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html URL:http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html MISC:http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html URL:http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html MISC:https://bugzilla.redhat.com/show_bug.cgi?id=1296253 URL:https://bugzilla.redhat.com/show_bug.cgi?id=1296253 MISC:https://github.com/torvalds/linux/commit/5c17c861a357e9458001f021a7afa7aab9937439 URL:https://github.com/torvalds/linux/commit/5c17c861a357e9458001f021a7afa7aab9937439 MISC:https://security-tracker.debian.org/tracker/CVE-2016-0723 URL:https://security-tracker.debian.org/tracker/CVE-2016-0723 MISC:https://support.f5.com/csp/article/K43650115 URL:https://support.f5.com/csp/article/K43650115 MISC:openSUSE-SU-2016:1008 URL:http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
Assigning CNA
Red Hat, Inc.
Date Record Created
20151216	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20151216)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)