The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses.
{ "vanir_signatures": [ { "digest": { "function_hash": "81152640286466285196123457699169584417", "length": 2938.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-5b42db33", "target": { "file": "net/ipv4/fib_frontend.c", "function": "fib_del_ifaddr" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "65102519249479356521503684279738200992", "156880505139946802441366453503540388310", "7535164315030420667378835586906657916", "322958702202771014348240961607966297690", "322938958497908237817916959980386734943", "66783341677020815684239698531239422417" ] }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-63c2cafd", "target": { "file": "net/ipv4/fib_frontend.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "262355026903566516332797454633887630141", "312856384073609628645977060550378404394", "91119621353618871887707486982837985177", "30026880256834021880541042227156628044", "204201474751707246071093355555499034339", "197536134761548384146227468495496376250" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-6fca41d0", "target": { "file": "net/ipv4/devinet.c" } }, { "digest": { "function_hash": "254832087596558418534975584949685552532", "length": 221.0 }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-72387d8c", "target": { "file": "net/ipv4/netfilter/nf_nat_masquerade_ipv4.c", "function": "masq_inet_event" } }, { "digest": { "function_hash": "171481341987606476823121369803052295718", "length": 1683.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-7f6d733c", "target": { "file": "net/ipv4/devinet.c", "function": "__inet_del_ifa" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "65102519249479356521503684279738200992", "156880505139946802441366453503540388310", "7535164315030420667378835586906657916", "322958702202771014348240961607966297690", "322938958497908237817916959980386734943", "66783341677020815684239698531239422417" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-9628627f", "target": { "file": "net/ipv4/fib_frontend.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "186094726467441266060819782489144243158", "323698650956466357739819198738786264905", "94180832316467627313977761812767231170", "110489463592712623066486788109274286943", "19039384915712907277838084505341129917", "33660181167488054897308712331139619471" ] }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-96ddee5b", "target": { "file": "net/ipv4/netfilter/nf_nat_masquerade_ipv4.c" } }, { "digest": { "function_hash": "171481341987606476823121369803052295718", "length": 1683.0 }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-a66a06b3", "target": { "file": "net/ipv4/devinet.c", "function": "__inet_del_ifa" } }, { "digest": { "function_hash": "81152640286466285196123457699169584417", "length": 2938.0 }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-b40cf1df", "target": { "file": "net/ipv4/fib_frontend.c", "function": "fib_del_ifaddr" } }, { "digest": { "function_hash": "254832087596558418534975584949685552532", "length": 221.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Function", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-b71dbfa3", "target": { "file": "net/ipv4/netfilter/nf_nat_masquerade_ipv4.c", "function": "masq_inet_event" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "262355026903566516332797454633887630141", "312856384073609628645977060550378404394", "91119621353618871887707486982837985177", "30026880256834021880541042227156628044", "204201474751707246071093355555499034339", "197536134761548384146227468495496376250" ] }, "source": "https://github.com/torvalds/linux/commit/fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-b842e8b8", "target": { "file": "net/ipv4/devinet.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "186094726467441266060819782489144243158", "323698650956466357739819198738786264905", "94180832316467627313977761812767231170", "110489463592712623066486788109274286943", "19039384915712907277838084505341129917", "33660181167488054897308712331139619471" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@fbd40ea0180a2d328c5adc61414dc8bab9335ce2", "signature_type": "Line", "deprecated": false, "signature_version": "v1", "id": "CVE-2016-3156-c1f6a064", "target": { "file": "net/ipv4/netfilter/nf_nat_masquerade_ipv4.c" } } ] }