ByteOS Network

NVD Vulnerability Details :

CVE-2016-9685

Modified

Source-cve@mitre.org

Published At-28 Dec, 2016 | 07:59

Updated At-06 May, 2026 | 22:30

Multiple memory leaks in error paths in fs/xfs/xfs_attr_list.c in the Linux kernel before 4.5.1 allow local users to cause a denial of service (memory consumption) via crafted XFS filesystem operations.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	5.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C

Type: Primary

Version: 3.0

Base score: 5.5

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 4.9

Base severity: MEDIUM

Vector:

AV:L/AC:L/Au:N/C:N/I:N/A:C

CPE Matches

Linux Kernel Organization, Inc

>>linux_kernel>>Versions up to 4.5.0(inclusive)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-400	Primary	nvd@nist.gov

CWE ID: CWE-400

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2e83b79b2d6c78bf1b4aa227938a214dcbddc83f	cve@mitre.org	Patch Vendor Advisory
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.1	cve@mitre.org	Release Notes
http://www.openwall.com/lists/oss-security/2016/11/30/1	cve@mitre.org	Mailing List Patch
http://www.securityfocus.com/bid/94593	cve@mitre.org	N/A
https://access.redhat.com/errata/RHSA-2017:1842	cve@mitre.org	N/A
https://access.redhat.com/errata/RHSA-2017:2077	cve@mitre.org	N/A
https://access.redhat.com/errata/RHSA-2017:2669	cve@mitre.org	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=1396941	cve@mitre.org	Issue Tracking
https://github.com/torvalds/linux/commit/2e83b79b2d6c78bf1b4aa227938a214dcbddc83f	cve@mitre.org	Patch Vendor Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2e83b79b2d6c78bf1b4aa227938a214dcbddc83f	af854a3a-2127-422b-91ae-364da2661108	Patch Vendor Advisory
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.1	af854a3a-2127-422b-91ae-364da2661108	Release Notes
http://www.openwall.com/lists/oss-security/2016/11/30/1	af854a3a-2127-422b-91ae-364da2661108	Mailing List Patch
http://www.securityfocus.com/bid/94593	af854a3a-2127-422b-91ae-364da2661108	N/A
https://access.redhat.com/errata/RHSA-2017:1842	af854a3a-2127-422b-91ae-364da2661108	N/A
https://access.redhat.com/errata/RHSA-2017:2077	af854a3a-2127-422b-91ae-364da2661108	N/A
https://access.redhat.com/errata/RHSA-2017:2669	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=1396941	af854a3a-2127-422b-91ae-364da2661108	Issue Tracking
https://github.com/torvalds/linux/commit/2e83b79b2d6c78bf1b4aa227938a214dcbddc83f	af854a3a-2127-422b-91ae-364da2661108	Patch Vendor Advisory