Lucene search

PRIOn knowledge basePRION:CVE-2015-5364

HistoryAug 31, 2015 - 10:59 a.m.

Code injection

2015-08-3110:59:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.227 Low

EPSS

Percentile

96.4%

JSON

The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system hang) via incorrect checksums within a UDP packet flood.

CPENameOperatorVersion
ubuntu_linuxeq15.04
ubuntu_linuxeq14.04
ubuntu_linuxeq12.04
debian_linuxeq8.0
debian_linuxeq7.0
linux_kernelge3.15
linux_kernellt3.16.35
linux_kernelge3.5
linux_kernellt3.10.81
linux_kernelge3.13

Name	Operator	Version
ubuntu_linux	eq	15.04
ubuntu_linux	eq	14.04
ubuntu_linux	eq	12.04
debian_linux	eq	8.0
debian_linux	eq	7.0
linux_kernel	ge	3.15
linux_kernel	lt	3.16.35
linux_kernel	ge	3.5
linux_kernel	lt	3.10.81
linux_kernel	ge	3.13

Rows per page:

1-10 of 211

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=beb39db59d14990e401e235faf66a6b9b31240b0

kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

lists.opensuse.org/opensuse-security-announce/2015-07/msg00023.html

lists.opensuse.org/opensuse-security-announce/2015-07/msg00049.html

lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00007.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00008.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00010.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00011.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00018.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00021.html

rhn.redhat.com/errata/RHSA-2015-1623.html

rhn.redhat.com/errata/RHSA-2015-1778.html

rhn.redhat.com/errata/RHSA-2015-1787.html

rhn.redhat.com/errata/RHSA-2016-0045.html

rhn.redhat.com/errata/RHSA-2016-1096.html

rhn.redhat.com/errata/RHSA-2016-1100.html

www.debian.org/security/2015/dsa-3313

www.debian.org/security/2015/dsa-3329

www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.0.6

www.openwall.com/lists/oss-security/2015/06/30/13

www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

www.securityfocus.com/bid/75510

www.securitytracker.com/id/1032794

www.ubuntu.com/usn/USN-2680-1

www.ubuntu.com/usn/USN-2681-1

www.ubuntu.com/usn/USN-2682-1

www.ubuntu.com/usn/USN-2683-1

www.ubuntu.com/usn/USN-2684-1

www.ubuntu.com/usn/USN-2713-1

www.ubuntu.com/usn/USN-2714-1

access.redhat.com/errata/RHSA-2016:1225

bugzilla.redhat.com/show_bug.cgi?id=1239029

github.com/torvalds/linux/commit/beb39db59d14990e401e235faf66a6b9b31240b0

twitter.com/grsecurity/status/605854034260426753

6.6 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.227 Low

EPSS

Percentile

96.4%

JSON

Related for PRION:CVE-2015-5364