NVD

Id
22280  
Name
CVE-2016-9120  
Description
Race condition in the ion_ioctl function in drivers/staging/android/ion/ion.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service (use-after-free) by calling ION_IOC_FREE on two CPUs at the same time.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2016-12-08  
Modified Date
2016-12-09  
Seq
2016-9120  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
118580 22280 CVE-2016-9120 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9590232bb4f4cc824f3425a6e1349afbe6d6d2b7  View
118581 22280 CVE-2016-9120 http://source.android.com/security/bulletin/2016-12-01.html  View
118582 22280 CVE-2016-9120 94669  View
118583 22280 CVE-2016-9120 https://github.com/torvalds/linux/commit/9590232bb4f4cc824f3425a6e1349afbe6d6d2b7  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
5360 JVNDB-2016-006133 Linux Kernel の drivers/staging/android/ion/ion.c の ion_ioctl 関数における権限を取得される脆弱性 Linux Kernel の drivers/staging/android/ion/ion.c の ion_ioctl 関数には、競合状態により、権限を取得される、またはサービス運用妨害 (解放済みメモリの使用 (Use-after-free) ) 状態にされる脆弱性が存在します。 CVE-2016-9120 95627 CVE-2016-9120 22280 9.3 7.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006133.html 2016-02-24 2016-12-12 View