USN-3099-1

Advisory lineage Upstream: 8 Downstream: 0

Upstream

CVE-2016-6130 CVE-2016-6480 CVE-2016-6828 CVE-2016-7039 UBUNTU-CVE-2016-6130 UBUNTU-CVE-2016-6480

Published: 11 Oct 2016, 06:14

Last modified:22 Apr 2026, 09:28

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

11 Oct 2016, 06:14

Published

Vulnerability first disclosed

22 Apr 2026, 09:28

Last Modified

Vulnerability information updated

Description

linux vulnerabilities Vladimír Beneš discovered an unbounded recursion in the VLAN and TEB Generic Receive Offload (GRO) processing implementations in the Linux kernel, A remote attacker could use this to cause a stack corruption, leading to a denial of service (system crash). (CVE-2016-7039) Marco Grassi discovered a use-after-free condition could occur in the TCP retransmit queue handling code in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2016-6828) Pengfei Wang discovered a race condition in the s390 SCLP console driver for the Linux kernel when handling ioctl()s. A local attacker could use this to obtain sensitive information from kernel memory. (CVE-2016-6130) Pengfei Wang discovered a race condition in the Adaptec AAC RAID controller driver in the Linux kernel when handling ioctl()s. A local attacker could use this to cause a denial of service (system crash). (CVE-2016-6480)

Affected Systems

ubuntu•linux
< 4.4.0-42.62

USN-3099-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)