- Description
- The __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h in the Linux kernel 4.4.22 through 4.4.28 contains extended asm statements that are incompatible with the exception table, which allows local users to obtain root access on non-SMEP platforms via a crafted application. NOTE: this vulnerability exists because of incorrect backporting of the CVE-2016-9178 patch to older kernels.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
- nvd@nist.gov
- CWE-264
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.22:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69FD6F60-3836-4F63-826D-FC3CBAE3D338"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.23:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "04EB1200-5662-4AB8-913F-7517471BA12F"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.24:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "96CBD63C-722B-4D8E-BD73-9DB23831B291"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6959AD65-8A87-4B9F-A829-1ED0294FE222"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.26:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "273AF0D4-6C6A-4068-8C40-A4D1F0B30824"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.27:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8019864-3F8D-461A-A34A-EA0EDA13A763"
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:4.4.28:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7F69BAE1-5306-4A37-B97A-C0AF1E7E84B1"
}
],
"operator": "OR"
}
]
}
]