Vulnerability Report

CVE-2016-3134

Title: Novell Suse Linux Enterprise Software Development Kit Auth Bypass

Auth Bypass

Proof Of Concept

PoC Available for CVE-2016-3134

CWE Category CWE-119

Published Date Apr 27, 2016

Modified Date May 06, 2026

Exploit Status Available

Score 8.4 CVSS v3.0

Exploit Probability (EPSS)

0.04%

Vulnerability Summary

CVE-2016-3134: The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.

Impacted Vendors

suse 1

novell 1

Reference Links

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54d83fc74aa9ec72794373cb47432c5f7fb1a309 http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html http://rhn.redhat.com/errata/RHSA-2016-1847.html http://rhn.redhat.com/errata/RHSA-2016-1875.html http://rhn.redhat.com/errata/RHSA-2016-1883.html http://www.debian.org/security/2016/dsa-3607 http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html http://www.securityfocus.com/bid/84305 http://www.securitytracker.com/id/1036763 http://www.ubuntu.com/usn/USN-2929-1 http://www.ubuntu.com/usn/USN-2929-2 http://www.ubuntu.com/usn/USN-2930-1 http://www.ubuntu.com/usn/USN-2930-2 http://www.ubuntu.com/usn/USN-2930-3 http://www.ubuntu.com/usn/USN-2931-1 http://www.ubuntu.com/usn/USN-2932-1 http://www.ubuntu.com/usn/USN-3049-1 http://www.ubuntu.com/usn/USN-3050-1 https://bugzilla.redhat.com/show_bug.cgi?id=1317383 https://code.google.com/p/google-security-research/issues/detail?id=758 https://github.com/torvalds/linux/commit/54d83fc74aa9ec72794373cb47432c5f7fb1a309 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54d83fc74aa9ec72794373cb47432c5f7fb1a309 http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.html http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html http://rhn.redhat.com/errata/RHSA-2016-1847.html http://rhn.redhat.com/errata/RHSA-2016-1875.html http://rhn.redhat.com/errata/RHSA-2016-1883.html http://www.debian.org/security/2016/dsa-3607 http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html http://www.securityfocus.com/bid/84305 http://www.securitytracker.com/id/1036763 http://www.ubuntu.com/usn/USN-2929-1 http://www.ubuntu.com/usn/USN-2929-2 http://www.ubuntu.com/usn/USN-2930-1 http://www.ubuntu.com/usn/USN-2930-2 http://www.ubuntu.com/usn/USN-2930-3 http://www.ubuntu.com/usn/USN-2931-1 http://www.ubuntu.com/usn/USN-2932-1 http://www.ubuntu.com/usn/USN-3049-1 http://www.ubuntu.com/usn/USN-3050-1 https://bugzilla.redhat.com/show_bug.cgi?id=1317383 https://code.google.com/p/google-security-research/issues/detail?id=758 https://github.com/torvalds/linux/commit/54d83fc74aa9ec72794373cb47432c5f7fb1a309

CVSS v3.0

Source Entity [email protected]

Severity HIGH

8.4

Attack Vector

LOCAL

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

UNCHANGED

RAW VECTOR CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

Source Entity [email protected]

Severity HIGH

7.2

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:L/AC:L/Au:N/C:C/I:C/A:C

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2016-3134 Exploits & PoCs (Proof Of Concept)

Exploit-DB https://www.exploit-db.com/exploits/39545

View Code

May 06, 2026 MODIFIED

Vulnerability data updated via NVD.

April 12, 2025 MODIFIED

Vulnerability data or affected products updated.

April 27, 2016 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector LOCAL

Complexity LOW

Privileges N/A

Interaction NONE

CVSS Vector String


                                    CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Stack

No specific products linked.