NVD

Id
22314  
Name
CVE-2016-9191  
Description
The cgroup offline implementation in the Linux kernel through 4.8.11 mishandles certain drain operations, which allows local users to cause a denial of service (system hang) by leveraging access to a container environment for executing a crafted application, as demonstrated by trinity.  
Reject
 
CVSS Version
2  
CVSS Score
4.9  
Severity
Medium  
CVSS Base Score
4.9  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-02-06  
Published
2016-11-27  
Modified Date
2017-01-30  
Seq
2016-9191  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
118674 22314 CVE-2016-9191 [oss-security] 20161105 Re: CVE request: linux kernel - local DoS with cgroup offline code  View
118675 22314 CVE-2016-9191 94129  View
118676 22314 CVE-2016-9191 https://bugzilla.redhat.com/show_bug.cgi?id=1392439  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
5257 JVNDB-2016-006030 Linux Kernel の cgroup オフラインの実装におけるサービス運用妨害 (DoS) の脆弱性 Linux Kernel の cgroup オフラインの実装は、特定の排出 (drain) 操作を誤って処理するため、サービス運用妨害 (システムハング) 状態にされる脆弱性が存在します。 CVE-2016-9191 95698 CVE-2016-9191 22314 4.9 5.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006030.html 2016-11-07 2016-11-30 View