979019 – (CVE-2016-4558) VUL-0: CVE-2016-4558: kernel: bpf: fix refcnt overflow

Bug 979019 (CVE-2016-4558) - VUL-0: CVE-2016-4558: kernel: bpf: fix refcnt overflow

Summary: VUL-0: CVE-2016-4558: kernel: bpf: fix refcnt overflow

Status:	RESOLVED FIXED

Alias:	CVE-2016-4558

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/168689/
Whiteboard:	CVSSv2:RedHat:CVE-2016-4558:7.2:(AV:L...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2016-05-09 08:51 UTC by Sebastian Krahmer
Modified:	2018-07-03 21:18 UTC (History)
CC List:	4 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sebastian Krahmer 2016-05-09 08:51:45 UTC

CVE-2016-4558



References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4558
http://seclists.org/oss-sec/2016/q2/266
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-4558.html

Comment 1 Michal Kubeček 2016-05-10 07:34:32 UTC

Fixed in v4.6-rc7 by

  92117d8443bc  bpf: fix refcnt overflow

which is tagged as fixing

  1be7f75d1668  bpf: enable non-root eBPF programs

(v4.4-rc1). I'm not completely sure the issue was introduced by exactly this
commit but certainly somewhere in the series.

This means the only affected branches are

  stable (until it moves to 4.6)
  SLE12-SP2

Comment 2 Michal Kubeček 2016-05-11 06:08:39 UTC

Fix submitted to

  stable
  SLE12-SP2

Closing and reassigning back to security team.