High severity7.5NVD Advisory· Published May 23, 2016· Updated May 6, 2026
CVE-2016-4580
CVE-2016-4580
Description
The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request.
Affected products
5cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
22- git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/nvdVendor Advisory
- github.com/torvalds/linux/commit/79e48650320e6fba48369fccf13fd045315b19b8nvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.htmlnvd
- www.debian.org/security/2016/dsa-3607nvd
- www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.5.5nvd
- www.openwall.com/lists/oss-security/2016/05/10/12nvd
- www.securityfocus.com/bid/90528nvd
- www.ubuntu.com/usn/USN-3016-1nvd
- www.ubuntu.com/usn/USN-3016-2nvd
- www.ubuntu.com/usn/USN-3016-3nvd
- www.ubuntu.com/usn/USN-3016-4nvd
- www.ubuntu.com/usn/USN-3017-1nvd
- www.ubuntu.com/usn/USN-3017-2nvd
- www.ubuntu.com/usn/USN-3017-3nvd
- www.ubuntu.com/usn/USN-3018-1nvd
- www.ubuntu.com/usn/USN-3018-2nvd
- www.ubuntu.com/usn/USN-3019-1nvd
- www.ubuntu.com/usn/USN-3020-1nvd
- www.ubuntu.com/usn/USN-3021-1nvd
- www.ubuntu.com/usn/USN-3021-2nvd
News mentions
0No linked articles in our index yet.