MGASA-2016-0033

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2016-0728
Published: 21 Jan 2016, 06:09
Last modified:16 Apr 2026, 06:22

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

21 Jan 2016, 06:09
Published
Vulnerability first disclosed
16 Apr 2026, 06:22
Last Modified
Vulnerability information updated

Description

Updated kernel packages fix security vulnerability Perception Point Research Team found a reference leak in keyring in join_session_keyring() that can be exploited to successfully escalate privileges from a local user to root (CVE-2016-0728). Other fixes in this kernel update: - netfilter: nf_nat_redirect: add missing NULL pointer check

Affected Systems

  • mageiakernel

    < 4.1.15-2.mga5

  • mageiakernel-userspace-headers

    < 4.1.15-2.mga5

  • mageiakmod-broadcom-wl

    < 6.30.223.271-5.mga5.nonfree

  • mageiakmod-fglrx

    < 15.200.1046-9.mga5.nonfree

  • mageiakmod-nvidia-current

    < 346.96-5.mga5.nonfree

  • mageiakmod-nvidia304

    < 304.128-5.mga5.nonfree

  • mageiakmod-nvidia340

    < 340.93-5.mga5.nonfree

  • mageiakmod-vboxadditions

    < 5.0.12-2.mga5

  • mageiakmod-virtualbox

    < 5.0.12-2.mga5

  • mageiakmod-xtables-addons

    < 2.7-8.mga5

References (2)