CVE-2016-8399 Red Hat Update for Kernel Security (RHSA-2017:0869)

The kernel packages contain the Linux kernel, the core of any Linux operating system.

A flaw was found in the Linux networking subsystem where a local attacker with CAP_NET_ADMIN capabilities could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto(). (CVE-2016-8399, Moderate)

On successful exploitation it could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto().

Upgrade to the latest packages which contain a patch. Refer to Applying Package Updates to RHEL system for details.

Refer to Red Hat security advisory RHSA-2017:0869 to address this issue and obtain more information.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

RHSA-2017:0869: Red Hat Enterprise Linux