CVE - CVE-2016-5195

CVE-ID
CVE-2016-5195	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:93793 URL:http://www.securityfocus.com/bid/93793 BUGTRAQ:20161020 [CVE-2016-5195] "Dirty COW" Linux privilege escalation vulnerability URL:http://www.securityfocus.com/archive/1/539611/100/0/threaded BUGTRAQ:20161020 [CVE-2016-5195] "Dirty COW" Linux privilege escalation vulnerability URL:http://www.securityfocus.com/archive/1/archive/1/539611/100/0/threaded BUGTRAQ:20170310 [security bulletin] HPESBGN03707 rev.1 - HPE ConvergedSystem 700 2.0 VMware Kit, Remote Increase of Privilege URL:http://www.securityfocus.com/archive/1/540252/100/0/threaded BUGTRAQ:20170310 [security bulletin] HPESBGN03707 rev.1 - HPE ConvergedSystem 700 2.0 VMware Kit, Remote Increase of Privilege URL:http://www.securityfocus.com/archive/1/archive/1/540252/100/0/threaded BUGTRAQ:20170331 [security bulletin] HPESBGN03722 rev.1 - HPE Operations Agent, Local Escalation of Privilege URL:http://www.securityfocus.com/archive/1/540344/100/0/threaded BUGTRAQ:20170331 [security bulletin] HPESBGN03722 rev.1 - HPE Operations Agent, Local Escalation of Privilege URL:http://www.securityfocus.com/archive/1/archive/1/540344/100/0/threaded BUGTRAQ:20170615 [security bulletin] HPESBGN03761 rev.1 - HPE Virtualization Performance Viewer (VPV)/ Cloud Optimizer using Linux, Remote Escalation of Privilege URL:http://www.securityfocus.com/archive/1/540736/100/0/threaded BUGTRAQ:20170615 [security bulletin] HPESBGN03761 rev.1 - HPE Virtualization Performance Viewer (VPV)/ Cloud Optimizer using Linux, Remote Escalation of Privilege URL:http://www.securityfocus.com/archive/1/archive/1/540736/100/0/threaded CERT-VN:VU#243144 URL:https://www.kb.cert.org/vuls/id/243144 CISCO:20161026 Vulnerability in Linux Kernel Affecting Cisco Products: October 2016 URL:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-linux CISCO:20181107 Cisco TelePresence Video Communication Server Test Validation Script Issue URL:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-vcsd CONFIRM:http://fortiguard.com/advisory/FG-IR-16-063 CONFIRM:http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619 CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10770 CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10774 CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10807 CONFIRM:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-dirtycow-en CONFIRM:http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.3 CONFIRM:http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html CONFIRM:https://access.redhat.com/security/cve/cve-2016-5195 CONFIRM:https://access.redhat.com/security/vulnerabilities/2706661 CONFIRM:https://bto.bluecoat.com/security-advisory/sa134 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1384344 CONFIRM:https://bugzilla.suse.com/show_bug.cgi?id=1004418 CONFIRM:https://github.com/torvalds/linux/commit/19be0eaffa3ac7d8eb6784ad9bdbc7d67ed8e619 CONFIRM:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c05352241 CONFIRM:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03707en_us CONFIRM:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03722en_us CONFIRM:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03742en_us CONFIRM:https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03761en_us CONFIRM:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05341463 CONFIRM:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05347541 CONFIRM:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05352241 CONFIRM:https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10176 CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10177 CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10222 CONFIRM:https://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-5195.html CONFIRM:https://security-tracker.debian.org/tracker/CVE-2016-5195 CONFIRM:https://security.netapp.com/advisory/ntap-20161025-0001/ CONFIRM:https://security.paloaltonetworks.com/CVE-2016-5195 CONFIRM:https://source.android.com/security/bulletin/2016-11-01.html CONFIRM:https://source.android.com/security/bulletin/2016-12-01.html DEBIAN:DSA-3696 URL:http://www.debian.org/security/2016/dsa-3696 EXPLOIT-DB:40611 URL:https://www.exploit-db.com/exploits/40611/ EXPLOIT-DB:40616 URL:https://www.exploit-db.com/exploits/40616/ EXPLOIT-DB:40839 URL:https://www.exploit-db.com/exploits/40839/ EXPLOIT-DB:40847 URL:https://www.exploit-db.com/exploits/40847/ FEDORA:FEDORA-2016-c3558808cd URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W3APRVDVPDBXLH4DC5UKZVCR742MJIM3/ FEDORA:FEDORA-2016-c8a0c7eece URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWMDLBWMGZKFHMRJ7QUQVCERP5QHDB6W/ FEDORA:FEDORA-2016-db4b75b352 URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E7M62SRP6CZLJ4ZXCRZKV4WPLQBSR7DT/ MISC:http://packetstormsecurity.com/files/139277/Kernel-Live-Patch-Security-Notice-LSN-0012-1.html MISC:http://packetstormsecurity.com/files/139286/DirtyCow-Linux-Kernel-Race-Condition.html MISC:http://packetstormsecurity.com/files/139287/DirtyCow-Local-Root-Proof-Of-Concept.html MISC:http://packetstormsecurity.com/files/139922/Linux-Kernel-Dirty-COW-PTRACE_POKEDATA-Privilege-Escalation.html MISC:http://packetstormsecurity.com/files/139923/Linux-Kernel-Dirty-COW-PTRACE_POKEDATA-Privilege-Escalation.html MISC:http://packetstormsecurity.com/files/142151/Kernel-Live-Patch-Security-Notice-LSN-0021-1.html MISC:https://dirtycow.ninja MISC:https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs MISC:https://github.com/dirtycow/dirtycow.github.io/wiki/VulnerabilityDetails MISC:https://www.arista.com/en/support/advisories-notices/security-advisories/1753-security-advisory-0026 MLIST:[oss-security] 20161021 CVE-2016-5195 "Dirty COW" Linux kernel privilege escalation vulnerability URL:http://www.openwall.com/lists/oss-security/2016/10/21/1 MLIST:[oss-security] 20161026 Re: CVE-2016-5195 "Dirty COW" Linux kernel privilege escalation vulnerability URL:http://www.openwall.com/lists/oss-security/2016/10/26/7 MLIST:[oss-security] 20161027 CVE-2016-5195 test case URL:http://www.openwall.com/lists/oss-security/2016/10/27/13 MLIST:[oss-security] 20161030 Re: CVE-2016-5195 test case URL:http://www.openwall.com/lists/oss-security/2016/10/30/1 MLIST:[oss-security] 20161103 Re: CVE-2016-5195 "Dirty COW" Linux kernel privilege escalation vulnerability URL:http://www.openwall.com/lists/oss-security/2016/11/03/7 MLIST:[oss-security] 20220307 CVE-2022-0847: Linux kernel: overwriting read-only files URL:http://www.openwall.com/lists/oss-security/2022/03/07/1 MLIST:[oss-security] 20220808 CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/08/1 MLIST:[oss-security] 20220808 Re: CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/08/2 MLIST:[oss-security] 20220808 Re: CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/08/7 MLIST:[oss-security] 20220808 Re: CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/08/8 MLIST:[oss-security] 20220809 Re: CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/09/4 MLIST:[oss-security] 20220815 Re: CVE-2022-2590: Linux kernel: Modifying shmem/tmpfs files without write permissions URL:http://www.openwall.com/lists/oss-security/2022/08/15/1 REDHAT:RHSA-2016:2098 URL:http://rhn.redhat.com/errata/RHSA-2016-2098.html REDHAT:RHSA-2016:2105 URL:http://rhn.redhat.com/errata/RHSA-2016-2105.html REDHAT:RHSA-2016:2106 URL:http://rhn.redhat.com/errata/RHSA-2016-2106.html REDHAT:RHSA-2016:2107 URL:http://rhn.redhat.com/errata/RHSA-2016-2107.html REDHAT:RHSA-2016:2110 URL:http://rhn.redhat.com/errata/RHSA-2016-2110.html REDHAT:RHSA-2016:2118 URL:http://rhn.redhat.com/errata/RHSA-2016-2118.html REDHAT:RHSA-2016:2120 URL:http://rhn.redhat.com/errata/RHSA-2016-2120.html REDHAT:RHSA-2016:2124 URL:http://rhn.redhat.com/errata/RHSA-2016-2124.html REDHAT:RHSA-2016:2126 URL:http://rhn.redhat.com/errata/RHSA-2016-2126.html REDHAT:RHSA-2016:2127 URL:http://rhn.redhat.com/errata/RHSA-2016-2127.html REDHAT:RHSA-2016:2128 URL:http://rhn.redhat.com/errata/RHSA-2016-2128.html REDHAT:RHSA-2016:2132 URL:http://rhn.redhat.com/errata/RHSA-2016-2132.html REDHAT:RHSA-2016:2133 URL:http://rhn.redhat.com/errata/RHSA-2016-2133.html REDHAT:RHSA-2017:0372 URL:https://access.redhat.com/errata/RHSA-2017:0372 SECTRACK:1037078 URL:http://www.securitytracker.com/id/1037078 SUSE:SUSE-SU-2016:2585 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00036.html SUSE:SUSE-SU-2016:2592 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00038.html SUSE:SUSE-SU-2016:2593 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00039.html SUSE:SUSE-SU-2016:2596 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00040.html SUSE:SUSE-SU-2016:2614 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00045.html SUSE:SUSE-SU-2016:2629 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00049.html SUSE:SUSE-SU-2016:2630 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00050.html SUSE:SUSE-SU-2016:2631 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00051.html SUSE:SUSE-SU-2016:2632 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00052.html SUSE:SUSE-SU-2016:2633 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00053.html SUSE:SUSE-SU-2016:2634 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00054.html SUSE:SUSE-SU-2016:2635 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00055.html SUSE:SUSE-SU-2016:2636 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00056.html SUSE:SUSE-SU-2016:2637 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00057.html SUSE:SUSE-SU-2016:2638 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00058.html SUSE:SUSE-SU-2016:2655 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00064.html SUSE:SUSE-SU-2016:2657 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00065.html SUSE:SUSE-SU-2016:2658 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00066.html SUSE:SUSE-SU-2016:2659 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00067.html SUSE:SUSE-SU-2016:2673 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00072.html SUSE:SUSE-SU-2016:3069 URL:http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00033.html SUSE:SUSE-SU-2016:3304 URL:http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00100.html SUSE:openSUSE-SU-2016:2583 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00034.html SUSE:openSUSE-SU-2016:2584 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00035.html SUSE:openSUSE-SU-2016:2625 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00048.html SUSE:openSUSE-SU-2016:2649 URL:http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00063.html SUSE:openSUSE-SU-2020:0554 URL:http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html UBUNTU:USN-3104-1 URL:http://www.ubuntu.com/usn/USN-3104-1 UBUNTU:USN-3104-2 URL:http://www.ubuntu.com/usn/USN-3104-2 UBUNTU:USN-3105-1 URL:http://www.ubuntu.com/usn/USN-3105-1 UBUNTU:USN-3105-2 URL:http://www.ubuntu.com/usn/USN-3105-2 UBUNTU:USN-3106-1 URL:http://www.ubuntu.com/usn/USN-3106-1 UBUNTU:USN-3106-2 URL:http://www.ubuntu.com/usn/USN-3106-2 UBUNTU:USN-3106-3 URL:http://www.ubuntu.com/usn/USN-3106-3 UBUNTU:USN-3106-4 URL:http://www.ubuntu.com/usn/USN-3106-4 UBUNTU:USN-3107-1 URL:http://www.ubuntu.com/usn/USN-3107-1 UBUNTU:USN-3107-2 URL:http://www.ubuntu.com/usn/USN-3107-2
Assigning CNA
Chrome
Date Record Created
20160531	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20160531)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)