CVE-2015-8539

HIGH

Description

The KEYS subsystem in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (BUG) via crafted keyctl commands that negatively instantiate a key, related to security/keys/encrypted-keys/encrypted.c, security/keys/trusted.c, and security/keys/user_defined.c.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=096fe9eaea40a17e125569f9e657e34cdb6d73bd

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00007.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00008.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00011.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00017.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00022.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00034.html

http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

http://www.openwall.com/lists/oss-security/2015/12/09/1

https://access.redhat.com/errata/RHSA-2018:0151

https://access.redhat.com/errata/RHSA-2018:0152

https://access.redhat.com/errata/RHSA-2018:0181

https://bugzilla.redhat.com/show_bug.cgi?id=1284450

https://github.com/torvalds/linux/commit/096fe9eaea40a17e125569f9e657e34cdb6d73bd

https://usn.ubuntu.com/3798-1/

https://usn.ubuntu.com/3798-2/

Details

Source: MITRE

Published: 2016-02-08

Updated: 2018-10-30

Type: CWE-264

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3.0

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Tenable Plugins

View all (18 total)

ID	Name	Product	Family	Severity
127165	NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0014)	Nessus	NewStart CGSL Local Security Checks	high
124971	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1518)	Nessus	Huawei Local Security Checks	high
124813	EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1489)	Nessus	Huawei Local Security Checks	critical
118329	Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3798-1)	Nessus	Ubuntu Local Security Checks	high
106525	RHEL 6 : kernel-rt (RHSA-2018:0181)	Nessus	Red Hat Local Security Checks	high
106364	Oracle Linux 7 : kernel (ELSA-2018-0151) (Meltdown) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
106353	CentOS 7 : kernel (CESA-2018:0151) (Meltdown) (Spectre)	Nessus	CentOS Local Security Checks	high
106340	Scientific Linux Security Update : kernel on SL7.x x86_64 (20180125) (Meltdown) (Spectre)	Nessus	Scientific Linux Local Security Checks	high
106331	RHEL 7 : kernel-rt (RHSA-2018:0152)	Nessus	Red Hat Local Security Checks	high
106330	RHEL 7 : kernel (RHSA-2018:0151) (Meltdown) (Spectre)	Nessus	Red Hat Local Security Checks	high
97974	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-001)	Nessus	Virtuozzo Local Security Checks	high
93289	SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2074-1)	Nessus	SuSE Local Security Checks	critical
92007	openSUSE Security Update : the Linux Kernel (openSUSE-2016-862)	Nessus	SuSE Local Security Checks	high
90884	SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1203-1)	Nessus	SuSE Local Security Checks	critical
90264	SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2016:0911-1)	Nessus	SuSE Local Security Checks	critical
89022	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:0585-1)	Nessus	SuSE Local Security Checks	high
88542	openSUSE Security Update : the Linux Kernel (openSUSE-2016-116)	Nessus	SuSE Local Security Checks	high
88006	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:0168-1)	Nessus	SuSE Local Security Checks	high