SUSE-SU-2016:0746-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2013-7446 CVE-2016-0728

Published: 14 Mar 2016, 13:29

Last modified:04 Feb 2026, 02:29

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Mar 2016, 13:29

Published

Vulnerability first disclosed

04 Feb 2026, 02:29

Last Modified

Vulnerability information updated

Description

Security update for kernel live patch 4 This kernel live patch for Linux Kernel 3.12.39-47.1 fixes two security issues: Fixes: - CVE-2016-0728: A reference leak in keyring handling with join_session_keyring() could lead to local attackers gain root privileges. (bsc#962078). - CVE-2013-7446: Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel allowed local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted epoll_ctl calls. (bsc#955837)

Affected Systems

suse•kgraft-patch-SLE12_Update_4&distro=SUSE Linux Enterprise Live Patching 12
< 5-2.1

SUSE-SU-2016:0746-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)