CVE-2016-3699

Updated: 2023-12-06

CWE: Permissions, Privileges, and Access Control

Description:

The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd.

CVSS3: 7.4

Vendor State

OS	Vendor version	Errata
Oracle Linux 6 UEK 3	3.8.13-118.14.2.el6uek	ELSA-2016-3645
Oracle Linux 7 UEK 3	3.8.13-118.14.2.el7uek	ELSA-2016-3645

KernelCare State

OS	Original kernel version	State
Oracle Linux 6 UEK 3	3.8.13-118.13.2.el6uek show all hide all 3.8.13-118.6.1.el6uek 3.8.13-118.10.2.el6uek 3.8.13-118.3.2.el6uek 3.8.13-118.4.2.el6uek 3.8.13-118.2.4.el6uek 3.8.13-118.9.1.el6uek 3.8.13-118.2.1.el6uek 3.8.13-118.11.2.el6uek 3.8.13-118.2.5.el6uek 3.8.13-118.7.1.el6uek 3.8.13-118.4.1.el6uek 3.8.13-118.14.1.el6uek 3.8.13-118.3.1.el6uek 3.8.13-118.8.1.el6uek 3.8.13-118.13.3.el6uek 3.8.13-118.6.2.el6uek 3.8.13-118.2.2.el6uek 3.8.13-118.9.2.el6uek	Released
Oracle Linux 7 UEK 3	3.8.13-118.10.2.el7uek show all hide all 3.8.13-118.2.4.el7uek 3.8.13-118.9.2.el7uek 3.8.13-118.3.2.el7uek 3.8.13-118.9.1.el7uek 3.8.13-118.7.1.el7uek 3.8.13-118.4.2.el7uek 3.8.13-118.6.1.el7uek 3.8.13-118.14.1.el7uek 3.8.13-118.3.1.el7uek 3.8.13-118.4.1.el7uek 3.8.13-118.8.1.el7uek 3.8.13-118.6.2.el7uek 3.8.13-118.11.2.el7uek 3.8.13-118.13.2.el7uek 3.8.13-118.2.2.el7uek 3.8.13-118.2.1.el7uek 3.8.13-118.13.3.el7uek 3.8.13-118.2.5.el7uek	Released
OEL 7 Dell		Ready For Release
Endurance 7 eig 3.10		Ready For Release