VYPR
High severity7.8NVD Advisory· Published Dec 28, 2016· Updated Jun 17, 2026

CVE-2016-9576

CVE-2016-9576

Description

The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-after-free) by leveraging access to a /dev/sg device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

147

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.