The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before 4.5.5 does not properly maintain an fd data structure, which allows local users to gain privileges or cause a denial of service (use-after-free) via crafted BPF instructions that reference an incorrect file descriptor.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-05-23T10:00:00
Updated: 2024-08-06T00:32:25.891Z
Reserved: 2016-05-06T00:00:00
Link: CVE-2016-4557
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2016-05-23T10:59:03.707
Modified: 2023-01-17T21:40:08.990
Link: CVE-2016-4557
Redhat