{"id":"CVE-2016-6480","details":"Race condition in the ioctl_send_fib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a \"double fetch\" vulnerability.","modified":"2026-03-12T22:24:06.726709Z","published":"2016-08-06T20:59:14.487Z","related":["MGASA-2016-0345","MGASA-2016-0364","SUSE-SU-2016:2174-1","SUSE-SU-2016:2175-1","SUSE-SU-2016:2177-1","SUSE-SU-2016:2178-1","SUSE-SU-2016:2179-1","SUSE-SU-2016:2180-1","SUSE-SU-2016:2181-1","SUSE-SU-2016:2230-1","SUSE-SU-2016:2245-1","SUSE-SU-2016:2674-1","SUSE-SU-2016:2912-1","SUSE-SU-2016:2976-1","SUSE-SU-2016:3069-1","SUSE-SU-2016:3304-1","SUSE-SU-2017:0333-1","SUSE-SU-2017:0471-1","openSUSE-SU-2024:10128-1"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/92214"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00048.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00050.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00051.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00052.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00001.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00049.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00053.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00054.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2017-0817.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/archive/1/539074/30/0/threaded"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2574.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2584.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1362466"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-6480.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.7"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}