Early Access — Mondoo Vulnerability Intelligence is currently in preview.

UBUNTU-CVE-2016-8405

MEDIUM4.7

An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside

Published Jan 12, 2017

Modified 6 months ago

Fix available

Details

An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31651010.

Affected Packages

Ubuntu:14.04:LTSlinux

Affected versions:

3.11.0-12.193.12.0-1.33.12.0-2.53.12.0-2.73.12.0-3.83.12.0-3.93.12.0-4.103.12.0-4.123.12.0-5.133.12.0-7.15+107 more

Fixed in:

3.13.0-126.175

Ubuntu:24.04:LTSlinux

Fixed in:

6.5.0-9.9

Ubuntu:18.04:LTSlinux

Fixed in:

4.13.0-16.19

Ubuntu:22.04:LTSlinux

Fixed in:

5.13.0-19.19

Ubuntu:16.04:LTSlinux

Affected versions:

4.2.0-16.194.2.0-17.214.2.0-19.234.3.0-1.104.3.0-2.114.3.0-5.164.3.0-6.174.3.0-7.184.4.0-10.254.4.0-11.26+35 more

Fixed in:

4.4.0-67.88

Ubuntu:20.04:LTSlinux

Affected versions:

5.3.0-18.195.3.0-24.26

Fixed in:

5.4.0-9.12

Ubuntu:16.04:LTSlinux-aws

Affected versions:

4.4.0-1001.104.4.0-1003.124.4.0-1004.134.4.0-1007.16

Fixed in:

4.4.0-1009.18

Ubuntu:14.04:LTSlinux-aws

Fixed in:

4.4.0-1002.2

Ubuntu:22.04:LTSlinux-aws

Fixed in:

5.13.0-1005.6

Ubuntu:24.04:LTSlinux-aws

Fixed in:

6.5.0-1008.8

Ubuntu:20.04:LTSlinux-aws

Affected versions:

5.3.0-1003.35.3.0-1008.95.3.0-1009.105.3.0-1010.11

Fixed in:

5.4.0-1005.5

Ubuntu:18.04:LTSlinux-aws

Fixed in:

4.15.0-1001.1

Ubuntu:20.04:LTSlinux-aws-5.15

Fixed in:

5.15.0-1014.18~20.04.1

Ubuntu:18.04:LTSlinux-aws-5.4

Fixed in:

5.4.0-1018.18~18.04.1

Ubuntu:FIPS-updates:18.04:LTSlinux-aws-fips

Ubuntu:FIPS:20.04:LTSlinux-aws-fips

Ubuntu:FIPS:18.04:LTSlinux-aws-fips

Ubuntu:Pro:FIPS-updates:20.04:LTSlinux-aws-fips

Fixed in:

5.4.0-1021.21+fips2

Ubuntu:FIPS-preview:22.04:LTSlinux-aws-fips

Affected versions:

5.15.0-1042.47+fips1

Ubuntu:FIPS-updates:22.04:LTSlinux-aws-fips

Affected versions:

5.15.0-1051.56+fips1

Ubuntu:Pro:FIPS-preview:22.04:LTSlinux-aws-fips

Affected versions:

5.15.0-1042.47+fips1

Fixed in:

5.15.0-1051.56+fips1

Ubuntu:Pro:FIPS:20.04:LTSlinux-aws-fips

Fixed in:

5.4.0-1021.21+fips2

Ubuntu:Pro:FIPS:18.04:LTSlinux-aws-fips

Fixed in:

4.15.0-2000.4

Ubuntu:Pro:FIPS-updates:22.04:LTSlinux-aws-fips

Affected versions:

5.15.0-1051.56+fips1

Fixed in:

5.15.0-1052.57+fips1

Ubuntu:FIPS-updates:20.04:LTSlinux-aws-fips

Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-aws-fips

Fixed in:

4.15.0-2000.4

Ubuntu:16.04:LTSlinux-aws-hwe

Fixed in:

4.15.0-1030.31~16.04.1

Ubuntu:18.04:LTSlinux-azure

Fixed in:

4.15.0-1002.2

Ubuntu:24.04:LTSlinux-azure

Fixed in:

6.5.0-1007.7

Ubuntu:20.04:LTSlinux-azure

Affected versions:

5.3.0-1003.35.3.0-1008.95.3.0-1009.10

Fixed in:

5.4.0-1006.6

Ubuntu:22.04:LTSlinux-azure

Fixed in:

5.13.0-1006.7

Ubuntu:14.04:LTSlinux-azure

Fixed in:

4.15.0-1023.24~14.04.1

Ubuntu:16.04:LTSlinux-azure

Fixed in:

4.11.0-1009.9

Ubuntu:18.04:LTSlinux-azure-4.15

Fixed in:

4.15.0-1082.92

Ubuntu:20.04:LTSlinux-azure-5.15

Fixed in:

5.15.0-1007.8~20.04.1

Ubuntu:18.04:LTSlinux-azure-5.4

Fixed in:

5.4.0-1020.20~18.04.1

Ubuntu:22.04:LTSlinux-azure-fde

Fixed in:

5.15.0-1019.24.1

Ubuntu:Pro:20.04:LTSlinux-azure-fde

Affected versions:

5.4.0-1063.66+cvm2.25.4.0-1063.66+cvm3.25.4.0-1064.67+cvm1.15.4.0-1065.68+cvm2.15.4.0-1067.70+cvm1.15.4.0-1068.71+cvm1.15.4.0-1069.72+cvm1.15.4.0-1070.73+cvm1.15.4.0-1072.75+cvm1.15.4.0-1073.76+cvm1.1+16 more

Ubuntu:20.04:LTSlinux-azure-fde-5.15

Fixed in:

5.15.0-1019.24~20.04.1.1

Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-azure-fips

Fixed in:

4.15.0-1002.2

Ubuntu:Pro:FIPS-updates:20.04:LTSlinux-azure-fips

Fixed in:

5.4.0-1022.22+fips1

Ubuntu:Pro:FIPS:20.04:LTSlinux-azure-fips

Fixed in:

5.4.0-1022.22+fips1

Ubuntu:Pro:FIPS-updates:22.04:LTSlinux-azure-fips

Affected versions:

5.15.0-1053.61+fips1

Fixed in:

5.15.0-1058.66+fips1

Ubuntu:Pro:FIPS:18.04:LTSlinux-azure-fips

Fixed in:

4.15.0-1002.2

Ubuntu:Pro:FIPS-preview:22.04:LTSlinux-azure-fips

Fixed in:

5.15.0-1053.61+fips1

Ubuntu:20.04:LTSlinux-bluefield

Fixed in:

5.4.0-1007.10

Ubuntu:22.04:LTS:for:NVIDIA:BlueFieldlinux-bluefield

Fixed in:

5.15.0-1011.13

Ubuntu:Pro:FIPS-preview:22.04:LTSlinux-fips

Fixed in:

5.15.0-73.80+fips1

Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-fips

Fixed in:

4.15.0-1027.32

Ubuntu:Pro:FIPS:16.04:LTSlinux-fips

Fixed in:

4.4.0-1003.3

Ubuntu:Pro:FIPS:18.04:LTSlinux-fips

Fixed in:

4.15.0-1011.12

Ubuntu:FIPS:16.04:LTSlinux-fips

Ubuntu:Pro:FIPS-updates:22.04:LTSlinux-fips

Affected versions:

5.15.0-73.80+fips1

Fixed in:

5.15.0-92.102+fips1

Ubuntu:Pro:FIPS:16.04:LTSlinux-fips

Fixed in:

4.4.0-1001.1

Ubuntu:Pro:FIPS:20.04:LTSlinux-fips

Fixed in:

5.4.0-1007.8

Ubuntu:Pro:FIPS-updates:20.04:LTSlinux-fips

Fixed in:

5.4.0-1026.30

Ubuntu:20.04:LTSlinux-gcp

Affected versions:

5.3.0-1004.45.3.0-1009.105.3.0-1011.12

Fixed in:

5.4.0-1005.5

Ubuntu:18.04:LTSlinux-gcp

Fixed in:

4.15.0-1001.1

Ubuntu:24.04:LTSlinux-gcp

Fixed in:

6.5.0-1007.7

Ubuntu:22.04:LTSlinux-gcp

Fixed in:

5.13.0-1005.6

Ubuntu:16.04:LTSlinux-gcp

Fixed in:

4.10.0-1004.4

Ubuntu:18.04:LTSlinux-gcp-4.15

Fixed in:

4.15.0-1071.81

Ubuntu:20.04:LTSlinux-gcp-5.15

Fixed in:

5.15.0-1006.9~20.04.1

Ubuntu:18.04:LTSlinux-gcp-5.4

Fixed in:

5.4.0-1019.19~18.04.2

Ubuntu:Pro:FIPS-preview:22.04:LTSlinux-gcp-fips

Fixed in:

5.15.0-1048.56+fips1

Ubuntu:Pro:FIPS-updates:22.04:LTSlinux-gcp-fips

Fixed in:

5.15.0-1048.56+fips1

Ubuntu:Pro:FIPS-updates:20.04:LTSlinux-gcp-fips

Fixed in:

5.4.0-1021.21+fips1

Ubuntu:Pro:FIPS-updates:18.04:LTSlinux-gcp-fips

Fixed in:

4.15.0-2013.14

Ubuntu:Pro:FIPS:20.04:LTSlinux-gcp-fips

Fixed in:

5.4.0-1021.21+fips1

Ubuntu:Pro:FIPS:18.04:LTSlinux-gcp-fips

Fixed in:

4.15.0-1001.1

Ubuntu:16.04:LTSlinux-gke

Fixed in:

4.4.0-1003.3

Ubuntu:24.04:LTSlinux-gke

Fixed in:

6.8.0-1003.5

Ubuntu:22.04:LTSlinux-gke

Fixed in:

5.15.0-1002.2

Ubuntu:Pro:20.04:LTSlinux-gke

Affected versions:

5.4.0-1033.355.4.0-1035.375.4.0-1036.385.4.0-1037.395.4.0-1039.415.4.0-1041.435.4.0-1042.445.4.0-1043.455.4.0-1044.465.4.0-1046.48+41 more

Ubuntu:22.04:LTSlinux-gkeop

Fixed in:

5.15.0-1001.2

Ubuntu:24.04:LTSlinux-gkeop

Fixed in:

6.8.0-1001.3

Ubuntu:20.04:LTSlinux-gkeop

Fixed in:

5.4.0-1008.9

Ubuntu:20.04:LTSlinux-gkeop-5.15

Fixed in:

5.15.0-1003.5~20.04.2

Ubuntu:16.04:LTSlinux-hwe

Affected versions:

4.10.0-27.30~16.04.24.10.0-28.32~16.04.24.10.0-30.34~16.04.14.8.0-36.36~16.04.14.8.0-39.42~16.04.14.8.0-41.44~16.04.14.8.0-42.45~16.04.14.8.0-44.47~16.04.14.8.0-45.48~16.04.14.8.0-46.49~16.04.1+7 more

Fixed in:

4.10.0-32.36~16.04.1

Ubuntu:20.04:LTSlinux-hwe-5.15

Fixed in:

5.15.0-33.34~20.04.1

Ubuntu:18.04:LTSlinux-hwe-5.4

Fixed in:

5.4.0-37.41~18.04.1

Ubuntu:22.04:LTSlinux-hwe-6.8

Fixed in:

6.8.0-38.38~22.04.1

Ubuntu:18.04:LTSlinux-hwe-edge

Fixed in:

5.0.0-15.16~18.04.1

Ubuntu:22.04:LTSlinux-ibm

Fixed in:

5.15.0-1002.2

Ubuntu:24.04:LTSlinux-ibm

Fixed in:

6.5.0-1009.9

Ubuntu:20.04:LTSlinux-ibm

Fixed in:

5.4.0-1003.4

Ubuntu:20.04:LTSlinux-ibm-5.15

Fixed in:

5.15.0-1033.36~20.04.1

Ubuntu:18.04:LTSlinux-ibm-5.4

Fixed in:

5.4.0-1010.11~18.04.2

Ubuntu:22.04:LTSlinux-intel-iot-realtime

Affected versions:

5.15.0-1073.75

Ubuntu:Pro:22.04:LTS:Realtime:Kernellinux-intel-iot-realtime

Fixed in:

5.15.0-1021.26

Ubuntu:22.04:LTS:Realtime:Kernellinux-intel-iot-realtime

Ubuntu:22.04:LTSlinux-intel-iotg

Fixed in:

5.15.0-1004.6

Ubuntu:20.04:LTSlinux-intel-iotg-5.15

Fixed in:

5.15.0-1003.5~20.04.1

Ubuntu:20.04:LTSlinux-iot

Fixed in:

5.4.0-1001.3

Ubuntu:20.04:LTSlinux-kvm

Affected versions:

5.3.0-1003.35.3.0-1008.95.3.0-1009.10

Fixed in:

5.4.0-1004.4

Ubuntu:18.04:LTSlinux-kvm

Fixed in:

4.15.0-1002.2

Ubuntu:16.04:LTSlinux-kvm

Fixed in:

4.4.0-1004.9

Ubuntu:22.04:LTSlinux-kvm

Fixed in:

5.13.0-1004.4

Ubuntu:22.04:LTSlinux-lowlatency

Fixed in:

5.15.0-22.22

Ubuntu:24.04:LTSlinux-lowlatency

Fixed in:

6.5.0-9.9.1

Ubuntu:20.04:LTSlinux-lowlatency-hwe-5.15

Fixed in:

5.15.0-33.34~20.04.1

Ubuntu:22.04:LTSlinux-lowlatency-hwe-6.8

Fixed in:

6.8.0-38.38.1~22.04.2

Ubuntu:14.04:LTSlinux-lts-xenial

Affected versions:

4.4.0-13.29~14.04.14.4.0-14.30~14.04.24.4.0-15.31~14.04.14.4.0-18.34~14.04.14.4.0-21.37~14.04.14.4.0-22.39~14.04.14.4.0-22.40~14.04.14.4.0-24.43~14.04.14.4.0-28.47~14.04.14.4.0-31.50~14.04.1+14 more

Fixed in:

4.4.0-67.88~14.04.1

Ubuntu:22.04:LTSlinux-nvidia

Fixed in:

5.15.0-1005.5

Ubuntu:24.04:LTSlinux-nvidia

Fixed in:

6.8.0-1007.7

Ubuntu:22.04:LTSlinux-nvidia-6.5

Fixed in:

6.5.0-1004.4

Ubuntu:22.04:LTSlinux-nvidia-6.8

Fixed in:

6.8.0-1008.8~22.04.1

Ubuntu:24.04:LTSlinux-nvidia-lowlatency

Fixed in:

6.8.0-1009.9.1

Ubuntu:16.04:LTSlinux-oem

Fixed in:

4.13.0-1008.9

Ubuntu:18.04:LTSlinux-oem

Fixed in:

4.15.0-1002.3

Ubuntu:24.04:LTSlinux-oem-6.8

Fixed in:

6.8.0-1003.3

Ubuntu:18.04:LTSlinux-oracle

Fixed in:

4.15.0-1007.9

Ubuntu:20.04:LTSlinux-oracle

Affected versions:

5.3.0-1002.25.3.0-1007.85.3.0-1008.9

Fixed in:

5.4.0-1005.5

Ubuntu:16.04:LTSlinux-oracle

Fixed in:

4.15.0-1007.9~16.04.1

Ubuntu:24.04:LTSlinux-oracle

Fixed in:

6.5.0-1010.10

Ubuntu:22.04:LTSlinux-oracle

Fixed in:

5.13.0-1008.10

Ubuntu:20.04:LTSlinux-oracle-5.15

Fixed in:

5.15.0-1007.9~20.04.1

Ubuntu:18.04:LTSlinux-oracle-5.4

Fixed in:

5.4.0-1019.19~18.04.1

Ubuntu:20.04:LTSlinux-raspi

Fixed in:

5.4.0-1007.7

Ubuntu:24.04:LTSlinux-raspi

Fixed in:

6.5.0-1005.7

Ubuntu:22.04:LTSlinux-raspi

Fixed in:

5.13.0-1008.9

Ubuntu:18.04:LTSlinux-raspi-5.4

Fixed in:

5.4.0-1013.13~18.04.1

Ubuntu:Pro:24.04:LTS:Realtime:Kernellinux-raspi-realtime

Fixed in:

6.7.0-2001.1

Ubuntu:24.04:LTS:Realtime:Kernellinux-raspi-realtime

Ubuntu:24.04:LTSlinux-raspi-realtime

Affected versions:

6.8.0-2019.20

Ubuntu:16.04:LTSlinux-raspi2

Affected versions:

4.2.0-1013.194.2.0-1014.214.3.0-1006.64.4.0-1003.44.4.0-1004.54.4.0-1009.104.4.0-1010.124.4.0-1010.134.4.0-1012.164.4.0-1016.22+12 more

Fixed in:

4.4.0-1048.55

Ubuntu:18.04:LTSlinux-raspi2

Fixed in:

4.13.0-1005.5

Ubuntu:Pro:20.04:LTSlinux-raspi2

Affected versions:

5.3.0-1007.85.3.0-1014.165.3.0-1015.175.3.0-1017.195.4.0-1004.45.4.0-1006.6

Ubuntu:Pro:24.04:LTS:Realtime:Kernellinux-realtime

Fixed in:

6.8.0-1008.19

Ubuntu:Pro:22.04:LTS:Realtime:Kernellinux-realtime

Fixed in:

5.15.0-1006.6

Ubuntu:22.04:LTSlinux-realtime

Affected versions:

5.15.0-1032.35

Ubuntu:24.04:LTSlinux-realtime

Fixed in:

6.8.1-1015.16

Ubuntu:24.04:LTSlinux-riscv

Fixed in:

6.5.0-9.9.1

Ubuntu:Pro:20.04:LTSlinux-riscv

Affected versions:

5.4.0-24.285.4.0-26.305.4.0-27.315.4.0-28.325.4.0-30.345.4.0-31.355.4.0-33.375.4.0-34.385.4.0-36.415.4.0-37.42+2 more

Ubuntu:22.04:LTSlinux-riscv

Affected versions:

5.13.0-1004.45.13.0-1006.6+22.04.15.13.0-1007.7+22.04.15.13.0-1010.11+22.04.15.15.0-1004.45.15.0-1005.55.15.0-1006.65.15.0-1007.75.15.0-1008.85.15.0-1011.12+13 more

Ubuntu:20.04:LTSlinux-riscv-5.15

Fixed in:

5.15.0-1015.17~20.04.1

Ubuntu:22.04:LTSlinux-riscv-6.8

Fixed in:

6.8.0-38.38.1~22.04.1

Ubuntu:16.04:LTSlinux-snapdragon

Affected versions:

4.4.0-1012.124.4.0-1013.144.4.0-1013.154.4.0-1015.184.4.0-1019.224.4.0-1020.234.4.0-1022.254.4.0-1024.274.4.0-1026.294.4.0-1030.33+9 more

Fixed in:

4.4.0-1051.55

Ubuntu:20.04:LTSlinux-xilinx-zynqmp

Fixed in:

5.4.0-1020.24

Ubuntu:22.04:LTSlinux-xilinx-zynqmp

Fixed in:

5.15.0-1022.26

References

REPORThttps://marc.info/?l=linux-kernel&m=148365805203921&w=2 REPORThttps://ubuntu.com/security/CVE-2016-8405 REPORThttps://ubuntu.com/security/notices/USN-3361-1 REPORThttps://ubuntu.com/security/notices/USN-3381-1 REPORThttps://ubuntu.com/security/notices/USN-3381-2 REPORThttps://www.cve.org/CVERecord?id=CVE-2016-8405

CVSS Analysis

CVSS v3.0

4.7

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

HighAC:H

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

NoneA:N

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

Related

CVE-2016-8405 USN-3361-1 USN-3381-1 USN-3381-2

Timeline

PublishedJan 12, 2017

ModifiedJun 24, 2025

UBUNTU-CVE-2016-8405 | Mondoo Vulnerability Intelligence