USN-3099-4

Advisory lineage Upstream: 6 Downstream: 0

Upstream

CVE-2016-6480 CVE-2016-6828 CVE-2016-7039 UBUNTU-CVE-2016-6480 UBUNTU-CVE-2016-6828 UBUNTU-CVE-2016-7039

Published: 11 Oct 2016, 07:26

Last modified:04 Feb 2026, 04:10

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

11 Oct 2016, 07:26

Published

Vulnerability first disclosed

04 Feb 2026, 04:10

Last Modified

Vulnerability information updated

Description

linux-snapdragon vulnerabilities Vladimír Beneš discovered an unbounded recursion in the VLAN and TEB Generic Receive Offload (GRO) processing implementations in the Linux kernel, A remote attacker could use this to cause a stack corruption, leading to a denial of service (system crash). (CVE-2016-7039) Marco Grassi discovered a use-after-free condition could occur in the TCP retransmit queue handling code in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2016-6828) Pengfei Wang discovered a race condition in the Adaptec AAC RAID controller driver in the Linux kernel when handling ioctl()s. A local attacker could use this to cause a denial of service (system crash). (CVE-2016-6480)

Affected Systems

ubuntu•linux-snapdragon
< 4.4.0-1030.33

USN-3099-4

Vulnerability Summary

Timeline

Description

Affected Systems

References (4)