漏洞信息(CVE-2016-1583)

一、漏洞 CVE-2016-1583 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

在Linux内核的fs/ecryptfs/kthread.c文件之前4.6.3版本中，ecryptfs_privileged_open函数允许本地用户通过涉及创建/proc路径名的 crafted mmap调用来获得特权或导致拒绝服务(堆内存消耗)，从而实现递归的页 fault 处理。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

Linux kernel fs/ecryptfs/kthread.c文件本地提权漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 4.6.2及之前版本的fs/ecryptfs/kthread.c文件中的‘ecryptfs_privileged_open’函数存在安全漏洞。本地攻击者可借助特制的mmap调用利用该漏洞获取权限，或造成拒绝服务（栈内存消耗）。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

缓冲区错误

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2016-1583 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2016-1583 的情报信息

http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.html x_refsource_MISC
https://github.com/torvalds/linux/commit/f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6d x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1344721 x_refsource_CONFIRM
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.3 x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/f0fe970df3838c202ef6c07a4c2b36838ef0a88b x_refsource_MISC
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6d x_refsource_CONFIRM
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87 x_refsource_CONFIRM
https://bugs.chromium.org/p/project-zero/issues/detail?id=836 x_refsource_MISC
https://github.com/torvalds/linux/commit/2f36db71009304b3f0b95afacd8eba1f9f046b87 x_refsource_CONFIRM
https://www.exploit-db.com/exploits/39992/ exploit x_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/91157 vdb-entry x_refsource_BID
http://www.securitytracker.com/id/1036763 vdb-entry x_refsource_SECTRACK
http://www.debian.org/security/2016/dsa-3607 vendor-advisory x_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-2996-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2997-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3000-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3002-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3004-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3007-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3003-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2998-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3008-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3006-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2999-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3001-1 vendor-advisory x_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3005-1 vendor-advisory x_refsource_UBUNTU
http://rhn.redhat.com/errata/RHSA-2016-2766.html vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2760 vendor-advisory x_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2016-2124.html vendor-advisory x_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html vendor-advisory x_refsource_SUSE
http://www.openwall.com/lists/oss-security/2016/06/10/8 mailing-list x_refsource_MLIST
http://www.openwall.com/lists/oss-security/2016/06/22/1 mailing-list x_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2016-1583

一、 漏洞 CVE-2016-1583 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2016-1583 的公开POC

三、漏洞 CVE-2016-1583 的情报信息

一、漏洞 CVE-2016-1583 基础信息