Race condition in the ec_device_ioctl_xcmd function in drivers/platform/chrome/cros_ec_dev.c in the Linux kernel before 4.7 allows local users to cause a denial of service (out-of-bounds array access) by changing a certain size value, aka a "double fetch" vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-08-06T20:00:00
Updated: 2024-08-06T01:22:20.646Z
Reserved: 2016-07-01T00:00:00
Link: CVE-2016-6156
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-08-06T20:59:08.050
Modified: 2016-11-28T20:30:47.683
Link: CVE-2016-6156
Redhat