Medium severity4.8NVD Advisory· Published Aug 6, 2016· Updated Jun 17, 2026
CVE-2016-5696
CVE-2016-5696
Description
net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
97cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:vm_server:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_server:3.4:*:*:*:*:*:*:*
- osv-coords92 versionspkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-compute_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-compute&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-ec2&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP1pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-trace&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%202.1pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/kernel-xen&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_9&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012pkg:rpm/suse/kgraft-patch-SLE12_Update_19&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_19&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012
< 3.0.101-88.1+ 91 more
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.3
- (no CPE)range: < 3.12.67-60.64.18.3
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.0.101.rt130-65.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.0.101.rt130-65.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101.rt130-65.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101.rt130-65.1
- (no CPE)range: < 3.12.67-60.27.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.0.101-88.1
- (no CPE)range: < 3.12.61-52.66.1
- (no CPE)range: < 3.12.67-60.64.18.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 3.0.101-0.47.86.1
- (no CPE)range: < 1-6.3
- (no CPE)range: < 1-2.1
- (no CPE)range: < 1-2.1
Patches
Vulnerability mechanics
References
31- git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/nvdIssue TrackingPatch
- github.com/torvalds/linux/commit/75ff39ccc1bd5d3c455b6822ab09e533c551f758nvdIssue TrackingPatch
- source.android.com/security/bulletin/2016-10-01.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2016/07/12/2nvdMailing ListThird Party Advisory
- www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlnvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlnvdVendor Advisory
- www.prnewswire.com/news-releases/mitnick-attack-reappears-at-geekpwn-macau-contest-300270779.htmlnvdTechnical Description
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_cao.pdfnvdTechnical Description
- rhn.redhat.com/errata/RHSA-2016-1631.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1632.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1633.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1657.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1664.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1814.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1815.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-1939.htmlnvd
- www.securityfocus.com/bid/91704nvd
- www.securitytracker.com/id/1036625nvd
- www.ubuntu.com/usn/USN-3070-1nvd
- www.ubuntu.com/usn/USN-3070-2nvd
- www.ubuntu.com/usn/USN-3070-3nvd
- www.ubuntu.com/usn/USN-3070-4nvd
- www.ubuntu.com/usn/USN-3071-1nvd
- www.ubuntu.com/usn/USN-3071-2nvd
- www.ubuntu.com/usn/USN-3072-1nvd
- www.ubuntu.com/usn/USN-3072-2nvd
- bto.bluecoat.com/security-advisory/sa131nvd
- kc.mcafee.com/corporate/indexnvd
- security.paloaltonetworks.com/CVE-2016-5696nvd
- www.arista.com/en/support/advisories-notices/security-advisories/1461-security-advisory-23nvd
News mentions
0No linked articles in our index yet.