Vulnerability CVE-2016-5009

Vulnerability Name:

CVE-2016-5009 (CCN-115015)

Assigned:

2016-05-24

Published:

2016-05-24

Updated:

2023-02-12

Summary:

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2016-5009

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: RHSA-2016-1384
Moderate: ceph security update

Source: CCN
Type: RHSA-2016-1385
Moderate: ceph security update

Source: secalert@redhat.com
Type: Vendor Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: XF
Type: UNKNOWN
ceph-cve20165009-dos(115015)

Source: CCN
Type: ceph GIT Repository
Merge pull request #9700 from JiYou/fix-monitor-crush

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-5009

Vulnerable Configuration:

Configuration CCN 1:

cpe:/a:redhat:ceph:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20165009	V	CVE-2016-5009	2022-05-20
oval:org.opensuse.security:def:42375	P	Security update for xen (Moderate)	2022-05-03
oval:org.opensuse.security:def:42273	P	Security update for glib2 (Low)	2022-04-28
oval:org.opensuse.security:def:42204	P	Security update for wpa_supplicant (Important)	2022-03-04
oval:org.opensuse.security:def:38664	P	Security update for MozillaFirefox (Important)	2021-12-10
oval:org.opensuse.security:def:20516	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:14558	P	libXi6-1.7.4-17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14723	P	pam_ssh-2.0-1.39 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14902	P	gnome-keyring-3.20.0-28.3.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14628	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14817	P	DirectFB-1.7.1-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14524	P	hyper-v-7-7.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14918	P	gv-3.7.4-1.36 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14679	P	libudisks2-0-2.1.3-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14844	P	binutils-2.32-9.36.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14532	P	java-1_8_0-ibm-1.8.0_sr5.20-30.36.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14699	P	libz1-1.2.11-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14891	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:20274	P	Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP4) (Important)	2021-07-15
oval:org.opensuse.security:def:42095	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:57032	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:42615	P	libpixman-1-0-0.24.4-0.15.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11971	P	mipv6d-2.0.2.umip.0.4-19.77 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12127	P	gnutls-3.3.27-1.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17040	P	ImageMagick-6.8.8.1-8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17247	P	lcms-1.19-17.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42667	P	pam_ldap-184-147.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11895	P	libipa_hbac0-1.13.4-18.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12216	P	libjbig2-2.0-12.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12018	P	strongswan-5.1.3-22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12152	P	java-1_8_0-openjdk-1.8.0.131-26.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17074	P	libraw9-0.15.4-3.88 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17283	P	libvpx1-32bit-1.3.0-3.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42712	P	systemtap-1.5-0.9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11903	P	libldap-2_4-2-2.4.41-18.25.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12033	P	vorbis-tools-1.4.0-26.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17159	P	dia-0.97.3-15.63 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42741	P	xorg-x11-libXp-32bit-7.4-1.18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12194	P	libecpg6-9.6.3-2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15556	P	coolkey-devel-1.1.0-147.71 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17032	P	pidgin-otr-4.0.0-6.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42551	P	gtk2-2.18.9-0.23.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11925	P	libpng16-16-1.6.8-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12052	P	yast2-users-3.1.57-16.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17216	P	sane-backends-32bit-1.0.24-3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12203	P	libgif6-32bit-5.0.5-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15579	P	git-1.8.5.2-2.32 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:57009	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:57010	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:54779	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2021-03-17
oval:org.opensuse.security:def:20332	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP4) (Important)	2021-03-17
oval:org.opensuse.security:def:57176	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:43475	P	Security update for the Linux Kernel (Important)	2021-02-16
oval:org.opensuse.security:def:20549	P	Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP5) (Important)	2021-02-10
oval:org.opensuse.security:def:54741	P	Security update for java-1_7_1-ibm (Moderate)	2021-01-04
oval:org.opensuse.security:def:39044	P	Security update for the Linux Kernel (Important)	2020-12-18
oval:org.opensuse.security:def:12854	P	cron-4.2-59.10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41943	P	dbus-1-1.2.10-3.11.29 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12876	P	eog-3.20.4-7.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41840	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:18154	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:20145	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:57415	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:58155	P	Security update for postgresql96 (Important)	2020-12-01
oval:org.opensuse.security:def:20643	P	Security update for freeradius-server (Important)	2020-12-01
oval:org.opensuse.security:def:38971	P	libnewt0_52 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39724	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:43430	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:58555	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:53737	P	Security update for postgresql10 (Low)	2020-12-01
oval:org.opensuse.security:def:54467	P	finch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38276	P	libcares2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41851	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:17482	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:18180	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:57590	P	Security update for kernel-source (Moderate)	2020-12-01
oval:org.opensuse.security:def:58265	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:21281	P	Security update for MozillaFirefox, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:53336	P	Security update for rmt-server (Important)	2020-12-01
oval:org.opensuse.security:def:54860	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38999	P	argyllcms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20153	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:20366	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:58358	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:58505	P	Security update for gstreamer-0_10-plugins-base (Moderate)	2020-12-01
oval:org.opensuse.security:def:53337	P	Security update for salt (Critical)	2020-12-01
oval:org.opensuse.security:def:53910	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:54575	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38413	P	mailman on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38824	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17494	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:57699	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20607	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:21307	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:54667	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56136	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:38180	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17393	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:20188	P	Security update for java-1_7_0-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:20404	P	Security update for gstreamer-plugins-good (Important)	2020-12-01
oval:org.opensuse.security:def:58434	P	Security update for pcre (Moderate)	2020-12-01
oval:org.opensuse.security:def:58580	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:53359	P	Security update for graphviz (Moderate)	2020-12-01
oval:org.opensuse.security:def:54016	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38181	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38516	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38883	P	telepathy-idle on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17516	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:57869	P	libvorbis-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20619	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:56210	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:38932	P	raptor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39682	P	Security update for cvs (Moderate)	2020-12-01
oval:org.opensuse.security:def:41839	P	Security update for Linux Kernel Live Patch 10 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:17425	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:42792	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:58472	P	Security update for xorg-x11-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:53499	P	Security update for unbound (Important)	2020-12-01
oval:org.opensuse.security:def:54182	P	dia on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38192	P	gdm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38574	P	cyrus-sasl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:81290	P	Security update for ceph (Moderate)	2017-03-28
oval:org.opensuse.security:def:78844	P	Security update for ceph (Moderate)	2017-03-28
oval:com.ubuntu.cosmic:def:201650090000000	V	CVE-2016-5009 on Ubuntu 18.10 (cosmic) - low.	2016-07-12
oval:com.ubuntu.artful:def:20165009000	V	CVE-2016-5009 on Ubuntu 17.10 (artful) - low.	2016-07-12
oval:com.ubuntu.trusty:def:20165009000	V	CVE-2016-5009 on Ubuntu 14.04 LTS (trusty) - low.	2016-07-12
oval:com.ubuntu.bionic:def:201650090000000	V	CVE-2016-5009 on Ubuntu 18.04 LTS (bionic) - low.	2016-07-12
oval:com.ubuntu.bionic:def:20165009000	V	CVE-2016-5009 on Ubuntu 18.04 LTS (bionic) - low.	2016-07-12
oval:com.ubuntu.xenial:def:20165009000	V	CVE-2016-5009 on Ubuntu 16.04 LTS (xenial) - low.	2016-07-12
oval:com.ubuntu.xenial:def:201650090000000	V	CVE-2016-5009 on Ubuntu 16.04 LTS (xenial) - low.	2016-07-12
oval:com.ubuntu.cosmic:def:20165009000	V	CVE-2016-5009 on Ubuntu 18.10 (cosmic) - low.	2016-07-12
oval:com.ubuntu.disco:def:201650090000000	V	CVE-2016-5009 on Ubuntu 19.04 (disco) - low.	2016-07-12
oval:com.ubuntu.precise:def:20165009000	V	CVE-2016-5009 on Ubuntu 12.04 LTS (precise) - low.	2016-07-12

BACK