CVE-2016-8399

State: PUBLISHED · Published: 2017-01-12 · Updated: 2024-08-06 · Assigner: google_android

Description

An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and current compiler optimizations restrict access to the vulnerable code. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31349935.

CWE

(none)

Affected

Google Inc. / Android — v=Kernel-3.10 [affected]; v=Kernel-3.18 [affected]

CVSS

(none)

References

https://source.android.com/security/bulletin/2016-12-01.html x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2017:2931 vendor-advisory, x_refsource_REDHAT
http://www.securityfocus.com/bid/94708 vdb-entry, x_refsource_BID
http://rhn.redhat.com/errata/RHSA-2017-0817.html vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:0869 vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2930 vendor-advisory, x_refsource_REDHAT
https://support.f5.com/csp/article/K23030550?utm_source=f5support&amp%3Butm_medium=RSS x_refsource_CONFIRM

Source

cvelistV5-main/cves/2016/8xxx/CVE-2016-8399.json