VYPR
Medium severity4.4NVD Advisory· Published Oct 16, 2016· Updated Jun 17, 2026

CVE-2016-7097

CVE-2016-7097

Description

The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

101

Patches

Vulnerability mechanics

References

17

News mentions

0

No linked articles in our index yet.