CVE-2016-8655

EPSS 11.1%

Race condition in net/packet/af_packet.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging the CAP_NET_RAW capability to change a socket version, related to the packet_set_ring and packet_setsockopt functions.

Affected products

n/a · n/a

public PoCs found — 11

githubgithub.com/martinmullins/CVE-2016-8655_Android★ 12 githubgithub.com/LakshmiDesai/CVE-2016-8655★ 5 githubgithub.com/agkunkle/chocobo★ 0 githubgithub.com/scarvell/cve-2016-8655★ 0 githubgithub.com/KosukeShimofuji/CVE-2016-8655★ 0 cve_referencepacketstormsecurity.com/files/140063/Linux-Kernel-4.4.0-AF_PACKET-Race-Condition-Privilege-Escalation.htmlunverified exploitdbwww.exploit-db.com/exploits/47170unverified cve_referencewww.exploit-db.com/exploits/40871/unverified cve_referencewww.exploit-db.com/exploits/44696/unverified exploitdbwww.exploit-db.com/exploits/44696unverified exploitdbwww.exploit-db.com/exploits/40871unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References