CVE-2016-10044

CVSS v3.1 7.8 (High)

CVSS v2.0 7.2 (High)

EPSS 0.04 % (5^th)

Affected Products 2

Advisories 6

The aio_mount function in fs/aio.c in the Linux kernel before 4.7.7 does not properly restrict execute access, which makes it easier for local users to bypass intended SELinux W^X policy restrictions, and consequently gain privileges, via an io_setup system call.

Weaknesses

CWE-264: Permissions, Privileges, and Access Controls

CVE Status: PUBLISHED
CNA: Android (associated with Google Inc. or Open Handset Alliance)
Published Date: 2017-02-07 07:59:00
(7 years ago)
Updated Date: 2023-01-17 21:40:37
(20 months ago)

Affected Products

Google

Android

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel prior 3.16.43 version	cpe:2.3:o:linux:linux_kernel		< 3.16.43
Linux Kernel from 3.17 version and prior 4.4.24 version	cpe:2.3:o:linux:linux_kernel	>= 3.17	< 4.4.24
Linux Kernel from 4.5 version and prior 4.7.7 version	cpe:2.3:o:linux:linux_kernel	>= 4.5	< 4.7.7

Configuration #2

		CPE23	From	Up To
	Google Android 7.1.1 and prior versions	cpe:2.3:o:google:android		<= 7.1.1