{
  "threat_severity" : "Moderate",
  "public_date" : "2016-07-04T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: Race condition vulnerability in Chrome driver",
    "id" : "1353490",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1353490"
  },
  "cvss" : {
    "cvss_base_score" : "3.3",
    "cvss_scoring_vector" : "AV:L/AC:M/Au:N/C:P/I:N/A:P",
    "status" : "draft"
  },
  "cvss3" : {
    "cvss3_base_score" : "5.3",
    "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
    "status" : "draft"
  },
  "cwe" : "CWE-362",
  "details" : [ "Race condition in the ec_device_ioctl_xcmd function in drivers/platform/chrome/cros_ec_dev.c in the Linux kernel before 4.7 allows local users to cause a denial of service (out-of-bounds array access) by changing a certain size value, aka a \"double fetch\" vulnerability.", "A timing flaw was found in the Chrome EC driver in the Linux kernel.  An attacker could abuse timing to skip validation checks to copy additional data from userspace possibly increasing privilege or crashing the system." ],
  "statement" : "This issue does not affect Red Hat Enterprise Linux products as they have not included this feature in any shipping products.",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise MRG 2",
    "fix_state" : "Not affected",
    "package_name" : "realtime-kernel",
    "cpe" : "cpe:/a:redhat:enterprise_mrg:2"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2016-6156\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-6156" ],
  "name" : "CVE-2016-6156",
  "csaw" : false
}