CVE-2015-8812CRITICAL
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.
References
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00029.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00030.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00034.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00036.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00037.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html
http://rhn.redhat.com/errata/RHSA-2016-2574.html
http://rhn.redhat.com/errata/RHSA-2016-2584.html
http://www.debian.org/security/2016/dsa-3503
http://www.openwall.com/lists/oss-security/2016/02/11/1
http://www.securityfocus.com/bid/83218
http://www.ubuntu.com/usn/USN-2946-1
http://www.ubuntu.com/usn/USN-2946-2
http://www.ubuntu.com/usn/USN-2947-1
http://www.ubuntu.com/usn/USN-2947-2
http://www.ubuntu.com/usn/USN-2947-3
http://www.ubuntu.com/usn/USN-2948-1
http://www.ubuntu.com/usn/USN-2948-2
http://www.ubuntu.com/usn/USN-2949-1
http://www.ubuntu.com/usn/USN-2967-1
http://www.ubuntu.com/usn/USN-2967-2
https://bugzilla.redhat.com/show_bug.cgi?id=1303532
https://github.com/torvalds/linux/commit/67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3
Details
Source: MITRE
Published: 2016-04-27
Updated: 2018-01-05
Type: NVD-CWE-Other
Risk Information
CVSS v2
Base Score: 10
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 10
Severity: HIGH
CVSS v3
Base Score: 9.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 3.9
Severity: CRITICAL
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:novell:suse_linux_enterprise_real_time_extension:12:sp1:*:*:*:*:*:*
Configuration 2
OR
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.4.8 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 124980 | EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1527) | Nessus | Huawei Local Security Checks | critical |
| 124813 | EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1489) | Nessus | Huawei Local Security Checks | critical |
| 99783 | EulerOS 2.0 SP1 : kernel (EulerOS-SA-2016-1020) | Nessus | Huawei Local Security Checks | critical |
| 95841 | Scientific Linux Security Update : kernel on SL7.x x86_64 (20161103) | Nessus | Scientific Linux Local Security Checks | critical |
| 95321 | CentOS 7 : kernel (CESA-2016:2574) | Nessus | CentOS Local Security Checks | critical |
| 94697 | Oracle Linux 7 : kernel (ELSA-2016-2574) | Nessus | Oracle Linux Local Security Checks | critical |
| 94547 | RHEL 7 : kernel-rt (RHSA-2016:2584) | Nessus | Red Hat Local Security Checks | critical |
| 94537 | RHEL 7 : kernel (RHSA-2016:2574) | Nessus | Red Hat Local Security Checks | critical |
| 93289 | SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2074-1) | Nessus | SuSE Local Security Checks | critical |
| 93104 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-1015) | Nessus | SuSE Local Security Checks | critical |
| 91087 | Ubuntu 12.04 LTS : linux vulnerabilities (USN-2967-1) | Nessus | Ubuntu Local Security Checks | critical |
| 90884 | SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1203-1) | Nessus | SuSE Local Security Checks | critical |
| 90783 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-518) | Nessus | SuSE Local Security Checks | critical |
| 90531 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:1019-1) | Nessus | SuSE Local Security Checks | critical |
| 90507 | Ubuntu 14.04 LTS : linux-lts-utopic regression (USN-2948-2) | Nessus | Ubuntu Local Security Checks | critical |
| 90482 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-445) | Nessus | SuSE Local Security Checks | critical |
| 90406 | Ubuntu 14.04 LTS : linux-lts-vivid vulnerabilities (USN-2949-1) | Nessus | Ubuntu Local Security Checks | critical |
| 90405 | Ubuntu 14.04 LTS : linux-lts-utopic vulnerabilities (USN-2948-1) | Nessus | Ubuntu Local Security Checks | critical |
| 90404 | Ubuntu 15.10 : linux-raspi2 vulnerabilities (USN-2947-3) | Nessus | Ubuntu Local Security Checks | critical |
| 90403 | Ubuntu 14.04 LTS : linux-lts-wily vulnerabilities (USN-2947-2) | Nessus | Ubuntu Local Security Checks | critical |
| 90402 | Ubuntu 15.10 : linux vulnerabilities (USN-2947-1) | Nessus | Ubuntu Local Security Checks | critical |
| 90401 | Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2946-2) | Nessus | Ubuntu Local Security Checks | critical |
| 90400 | Ubuntu 14.04 LTS : linux vulnerabilities (USN-2946-1) | Nessus | Ubuntu Local Security Checks | critical |
| 90264 | SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2016:0911-1) | Nessus | SuSE Local Security Checks | critical |
| 89993 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:0785-1) | Nessus | SuSE Local Security Checks | critical |
| 89702 | Fedora 22 : kernel-4.4.3-201.fc22 (2016-9fbe2c258b) | Nessus | Fedora Local Security Checks | critical |
| 89632 | Fedora 22 : kernel-4.3.6-201.fc22 (2016-e7162262b0) | Nessus | Fedora Local Security Checks | critical |
| 89570 | Fedora 23 : kernel-4.4.2-301.fc23 (2016-7e12ae5359) | Nessus | Fedora Local Security Checks | critical |
| 89122 | Debian DSA-3503-1 : linux - security update | Nessus | Debian Local Security Checks | critical |
| 89040 | Debian DLA-439-1 : linux-2.6 security update | Nessus | Debian Local Security Checks | critical |