CVE-2015-5156

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=48900cb6af4282fa0fb6ff4d72a81aa3dadb5c39

http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171454.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169378.html

http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00018.html

http://rhn.redhat.com/errata/RHSA-2015-1978.html

http://rhn.redhat.com/errata/RHSA-2016-0855.html

http://www.debian.org/security/2015/dsa-3364

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

http://www.securityfocus.com/bid/76230

http://www.securitytracker.com/id/1034045

http://www.ubuntu.com/usn/USN-2773-1

http://www.ubuntu.com/usn/USN-2774-1

http://www.ubuntu.com/usn/USN-2777-1

https://bugzilla.redhat.com/show_bug.cgi?id=1243852

https://github.com/torvalds/linux/commit/48900cb6af4282fa0fb6ff4d72a81aa3dadb5c39

Details

Source: MITRE

Published: 2015-10-19

Updated: 2017-11-04

Type: CWE-119

Risk Information

CVSS v2

Base Score: 6.1

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 6.5

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.1.10 (inclusive)

Tenable Plugins

View all (33 total)

IDNameProductFamilySeverity
124984EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1531)NessusHuawei Local Security Checks
high
124811EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1487)NessusHuawei Local Security Checks
high
109646SUSE SLES11 Security Update : kernel (SUSE-SU-2018:1172-1)NessusSuSE Local Security Checks
high
109360SUSE SLES11 Security Update : kernel (SUSE-SU-2018:1080-1) (Spectre)NessusSuSE Local Security Checks
high
99163OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0057) (Dirty COW)NessusOracleVM Local Security Checks
critical
91643Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20160510)NessusScientific Linux Local Security Checks
high
91210Oracle Linux 6 : kernel (ELSA-2016-0855)NessusOracle Linux Local Security Checks
high
91170CentOS 6 : kernel (CESA-2016:0855)NessusCentOS Local Security Checks
high
91077RHEL 6 : kernel (RHSA-2016:0855)NessusRed Hat Local Security Checks
high
90019OracleVM 3.2 : kernel-uek (OVMSA-2016-0037)NessusOracleVM Local Security Checks
critical
89392Fedora 22 : kernel-4.2.3-200.fc22 (2015-c15f00eb95)NessusFedora Local Security Checks
medium
89129Fedora 21 : kernel-4.1.12-101.fc21 (2015-0253d1f070)NessusFedora Local Security Checks
medium
87495SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2015:2292-1)NessusSuSE Local Security Checks
medium
86882OracleVM 3.3 : kernel-uek (OVMSA-2015-0147)NessusOracleVM Local Security Checks
high
86881Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3098)NessusOracle Linux Local Security Checks
high
86781OracleVM 3.3 : kernel-uek (OVMSA-2015-0144)NessusOracleVM Local Security Checks
medium
86780Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3094)NessusOracle Linux Local Security Checks
medium
86779Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3093)NessusOracle Linux Local Security Checks
medium
86778Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3092)NessusOracle Linux Local Security Checks
medium
86747Scientific Linux Security Update : kernel on SL7.x x86_64 (20151103)NessusScientific Linux Local Security Checks
medium
86723CentOS 7 : kernel (CESA-2015:1978)NessusCentOS Local Security Checks
medium
86718RHEL 7 : kernel (RHSA-2015:1978)NessusRed Hat Local Security Checks
medium
86717RHEL 7 : kernel-rt (RHSA-2015:1977)NessusRed Hat Local Security Checks
medium
86714Oracle Linux 7 : kernel (ELSA-2015-1978)NessusOracle Linux Local Security Checks
medium
86493Ubuntu 15.04 : linux vulnerabilities (USN-2779-1)NessusUbuntu Local Security Checks
medium
86492Ubuntu 14.04 LTS : linux-lts-vivid vulnerabilities (USN-2778-1)NessusUbuntu Local Security Checks
medium
86468Ubuntu 14.04 LTS : linux-lts-utopic vulnerabilities (USN-2777-1)NessusUbuntu Local Security Checks
medium
86467Ubuntu 14.04 LTS : linux vulnerabilities (USN-2776-1)NessusUbuntu Local Security Checks
medium
86466Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2775-1)NessusUbuntu Local Security Checks
medium
86465Ubuntu 12.04 LTS : linux vulnerabilities (USN-2773-1)NessusUbuntu Local Security Checks
medium
86378SUSE SLED12 / SLES12 Security Update : kernel-source (SUSE-SU-2015:1727-1)NessusSuSE Local Security Checks
high
86050Debian DSA-3364-1 : linux - security updateNessusDebian Local Security Checks
medium
86049Debian DLA-310-1 : linux-2.6 security updateNessusDebian Local Security Checks
high