VYPR
Medium severity5.0NVD Advisory· Published Nov 16, 2016· Updated Jun 17, 2026

CVE-2016-7917

CVE-2016-7917

Description

The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (infinite loop or out-of-bounds read) by leveraging the CAP_NET_ADMIN capability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.