Lucene search
AmazonALAS-2015-610HistoryNov 23, 2015 - 1:41 p.m.
Medium: kernel
2015-11-2313:41:00
alas.aws.amazon.com
28
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0005 Low
EPSS
Percentile
15.6%
Issue Overview:
A denial of service vulnerability was discovered in the keyring function’s garbage collector in the Linux kernel. The flaw allowed any local user account to trigger a kernel panic. (CVE-2015-7872)
Affected Packages:
kernel
Issue Correction:
Run yum clean all followed by yum update kernel to update your system. You will need to reboot your system in order for the new kernel to be running.
New Packages:
i686:
kernel-devel-4.1.13-18.26.amzn1.i686
kernel-tools-devel-4.1.13-18.26.amzn1.i686
kernel-debuginfo-common-i686-4.1.13-18.26.amzn1.i686
kernel-tools-debuginfo-4.1.13-18.26.amzn1.i686
perf-debuginfo-4.1.13-18.26.amzn1.i686
perf-4.1.13-18.26.amzn1.i686
kernel-debuginfo-4.1.13-18.26.amzn1.i686
kernel-4.1.13-18.26.amzn1.i686
kernel-headers-4.1.13-18.26.amzn1.i686
kernel-tools-4.1.13-18.26.amzn1.i686
noarch:
kernel-doc-4.1.13-18.26.amzn1.noarch
src:
kernel-4.1.13-18.26.amzn1.src
x86_64:
kernel-headers-4.1.13-18.26.amzn1.x86_64
kernel-tools-4.1.13-18.26.amzn1.x86_64
kernel-tools-devel-4.1.13-18.26.amzn1.x86_64
perf-debuginfo-4.1.13-18.26.amzn1.x86_64
kernel-debuginfo-4.1.13-18.26.amzn1.x86_64
kernel-4.1.13-18.26.amzn1.x86_64
kernel-devel-4.1.13-18.26.amzn1.x86_64
kernel-debuginfo-common-x86_64-4.1.13-18.26.amzn1.x86_64
kernel-tools-debuginfo-4.1.13-18.26.amzn1.x86_64
perf-4.1.13-18.26.amzn1.x86_64
Additional References
Red Hat: CVE-2015-7872
Mitre: CVE-2015-7872
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 1 | i686 | kernel-devel | < 4.1.13-18.26.amzn1 | kernel-devel-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-tools-devel | < 4.1.13-18.26.amzn1 | kernel-tools-devel-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-debuginfo-common-i686 | < 4.1.13-18.26.amzn1 | kernel-debuginfo-common-i686-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-tools-debuginfo | < 4.1.13-18.26.amzn1 | kernel-tools-debuginfo-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | perf-debuginfo | < 4.1.13-18.26.amzn1 | perf-debuginfo-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | perf | < 4.1.13-18.26.amzn1 | perf-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-debuginfo | < 4.1.13-18.26.amzn1 | kernel-debuginfo-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel | < 4.1.13-18.26.amzn1 | kernel-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-headers | < 4.1.13-18.26.amzn1 | kernel-headers-4.1.13-18.26.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | kernel-tools | < 4.1.13-18.26.amzn1 | kernel-tools-4.1.13-18.26.amzn1.i686.rpm |
Related
nessus
nessus
F5 Networks BIG-IP : Linux kernel vulnerability (K94105604)
2016-01-14 00:00:00
Amazon Linux AMI : kernel (ALAS-2015-610)
2015-11-24 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerability (USN-2824-1)
2015-12-02 00:00:00
ubuntucve
ubuntucve
CVE-2015-7872
2015-11-16 00:00:00
debiancve
debiancve
CVE-2015-7872
2015-11-16 11:59:00
f5
f5
SOL94105604 - Linux kernel vulnerability CVE-2015-7872
2016-01-13 00:00:00
K94105604 : Linux kernel vulnerability CVE-2015-7872
2016-01-13 00:00:00
openvas
openvas
F5 BIG-IP - Linux kernel vulnerability CVE-2015-7872
2016-01-19 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-610)
2015-11-24 00:00:00
Ubuntu: Security Advisory (USN-2824-1)
2015-12-02 00:00:00
prion
prion
Command injection
2015-11-16 11:59:00
ubuntu
ubuntu
Linux kernel (Utopic HWE) vulnerability
2015-12-01 00:00:00
Linux kernel (OMAP4) vulnerability
2015-12-17 00:00:00
Linux kernel (Vivid HWE) vulnerabilities
2015-12-04 00:00:00
cve
cve
CVE-2015-7872
2015-11-16 11:59:00
redhat
redhat
(RHSA-2016:0185) Important: kernel security and bug fix update
2016-02-16 10:28:15
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:24:43
cloudfoundry
cloudfoundry
USN-2829-1 Linux kernel vulnerability | Cloud Foundry
2016-01-07 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-01-08 00:00:00
kernel security and bug fix update
2016-02-16 00:00:00
kernel security and bug fix update
2015-12-15 00:00:00
centos
centos
kernel, perf, python security update
2016-02-17 03:38:06
kernel, perf, python security update
2015-12-16 00:07:51
suse
suse
Security update for kernel live patch SP1 0 (important)
2016-02-04 19:13:10
Security update for kernel live patch 7 (important)
2016-02-08 18:22:32
Security update for kernel live patch 1 (important)
2016-02-11 21:11:07
debian
debian
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
osv
osv
linux - security update
2015-11-10 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2016-01-11 13:44:41
Updated kernel-linus packages fix security vulnerabilities
2016-01-14 04:44:39
ibm
ibm
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:33:24
androidsecurity
androidsecurity
Android Security Bulletin—December 2016
2016-12-05 00:00:00
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0005 Low
EPSS
Percentile
15.6%
Related for ALAS-2015-610