CVE-2016-1583— Linux kernel fs/ecryptfs/kthread.c文件本地提权漏洞

EPSS 0.37% · P59 更新于 2026-02-21

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2016-1583 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling.

来源: 美国国家漏洞数据库 NVD

CVSS Information

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

N/A

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

Linux kernel fs/ecryptfs/kthread.c文件本地提权漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 4.6.2及之前版本的fs/ecryptfs/kthread.c文件中的‘ecryptfs_privileged_open’函数存在安全漏洞。本地攻击者可借助特制的mmap调用利用该漏洞获取权限，或造成拒绝服务（栈内存消耗）。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商	产品	影响版本	CPE	订阅
-	n/a	n/a	-

二、漏洞 CVE-2016-1583 的公开POC

#	POC 描述	源链接	神龙链接

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2016-1583 的情报信息

Please 登录 to view more intelligence information

http://packetstormsecurity.com/files/137560/Linux-ecryptfs-Stack-Overflow.htmlx_refsource_MISC
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6dx_refsource_CONFIRM
https://bugs.chromium.org/p/project-zero/issues/detail?id=836x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=1344721x_refsource_CONFIRM
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.3x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/2f36db71009304b3f0b95afacd8eba1f9f046b87x_refsource_CONFIRM
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/f0fe970df3838c202ef6c07a4c2b36838ef0a88bx_refsource_MISC
https://github.com/torvalds/linux/commit/f5364c150aa645b3d7daa21b5c0b9feaa1c9cd6dx_refsource_CONFIRM
http://www.securityfocus.com/bid/91157vdb-entryx_refsource_BID
https://www.exploit-db.com/exploits/39992/exploitx_refsource_EXPLOIT-DB
http://www.securitytracker.com/id/1036763vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2016/dsa-3607vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-3006-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3002-1vendor-advisoryx_refsource_UBUNTU
USN-3005-1: Linux kernel (Xenial HWE) vulnerabilities | Ubuntu security notices | Ubuntuvendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2998-1vendor-advisoryx_refsource_UBUNTU
USN-3008-1: Linux kernel (Qualcomm Snapdragon) vulnerability | Ubuntu security notices | Ubuntuvendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3001-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3004-1vendor-advisoryx_refsource_UBUNTU
USN-2996-1: Linux kernel vulnerabilities | Ubuntu security notices | Ubuntuvendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3003-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2997-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3007-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-3000-1vendor-advisoryx_refsource_UBUNTU
https://access.redhat.com/errata/RHSA-2017:2760vendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2016-2124.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00056.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00014.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00027.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00044.htmlvendor-advisoryx_refsource_SUSE
http://www.openwall.com/lists/oss-security/2016/06/10/8mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2016/06/22/1mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2016-1583

同批安全公告 · n/a · 2016-06-27 · 共 14 条

CVE-2014-9903		Linux kernel 信息泄露漏洞
CVE-2014-9904		Linux kernel ALSA子系统安全漏洞
CVE-2016-0758		Linux kernel 安全漏洞
CVE-2016-3707		Linux kernel 控制错误漏洞
CVE-2016-3713		Linux kernel 安全漏洞
CVE-2016-3949		Siemens SIMATIC S7-300 CPU 拒绝服务漏洞
CVE-2016-4440		Linux kernel 安全漏洞
CVE-2016-4470		Linux kernel 安全漏洞
CVE-2016-5243		Linux kernel 安全漏洞
CVE-2016-5244		Linux kernel 安全漏洞
CVE-2016-5728		Linux kernel 竞争条件漏洞
CVE-2016-5828		Linux kernel 安全漏洞
CVE-2016-5829		Linux kernel 基于堆的缓冲区错误漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-1583

暂无评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2016-1583— Linux kernel fs/ecryptfs/kthread.c文件本地提权漏洞

一、漏洞 CVE-2016-1583 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2016-1583 的公开POC

三、漏洞 CVE-2016-1583 的情报信息

同批安全公告 · n/a · 2016-06-27 · 共 14 条

IV. Related Vulnerabilities

V. Comments for CVE-2016-1583

发表评论

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

CVE-2016-1583— Linux kernel fs/ecryptfs/kthread.c文件本地提权漏洞

一、 漏洞 CVE-2016-1583 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2016-1583 的公开POC

三、漏洞 CVE-2016-1583 的情报信息

同批安全公告 · n/a · 2016-06-27 · 共 14 条

IV. Related Vulnerabilities

V. Comments for CVE-2016-1583

发表评论

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

一、漏洞 CVE-2016-1583 基础信息