CVE-2016-10741 : In the Linux kernel before 4.9.3, fs/xfs/xfs

In the Linux kernel before 4.9.3, fs/xfs/xfs_aops.c allows local users to cause a denial of service (system crash) because there is a race condition between direct and memory-mapped I/O (associated with a hole) that is handled with BUG_ON instead of an I/O failure.

Published 2019-02-01 16:29:00

Updated 2019-04-18 15:20:02

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2016-10741

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions before (<) 4.9.3
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-10741

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 19 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-10741

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.7	MEDIUM	AV:L/AC:M/Au:N/C:N/I:N/A:C	3.4	6.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
4.7	MEDIUM	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H	1.0	3.6	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2016-10741

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-10741

https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html

[SECURITY] [DLA 1731-2] linux regression update
Mailing List;Third Party Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html

[SECURITY] [DLA 1731-1] linux security update
Mailing List;Third Party Advisory

CVEs referencing this url
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=04197b341f23b908193308b8d63d17ff23232598

kernel/git/torvalds/linux.git - Linux kernel source tree
Patch;Third Party Advisory
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.3

Release Notes
http://www.securityfocus.com/bid/106822

Linux Kernel CVE-2016-10741 Local Denial of Service Vulnerability
Third Party Advisory;VDB Entry
https://bugzilla.suse.com/show_bug.cgi?id=1124010

Bug 1124010 – VUL-0: CVE-2016-10741: kernel: xfs: BUG_ON in __xfs_get_blocks() with xfstests generic/446
Issue Tracking;Third Party Advisory
https://github.com/torvalds/linux/commit/04197b341f23b908193308b8d63d17ff23232598

xfs: don't BUG() on mixed direct and mapped I/O · torvalds/linux@04197b3 · GitHub
Patch;Third Party Advisory

Jump to

Vulnerability Details : CVE-2016-10741

Products affected by CVE-2016-10741

Exploit prediction scoring system (EPSS) score for CVE-2016-10741

CVSS scores for CVE-2016-10741

CWE ids for CVE-2016-10741

References for CVE-2016-10741