Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2015:1082
HistoryJun 09, 2015 - 12:00 a.m.

(RHSA-2015:1082) Important: kernel security update

2015-06-0900:00:00
access.redhat.com
23

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.059 Low

EPSS

Percentile

92.3%

JSON

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

  • A use-after-free flaw was found in the way the Linux kernel’s SCTP
    implementation handled authentication key reference counting during INIT
    collisions. A remote attacker could use this flaw to crash the system or,
    potentially, escalate their privileges on the system. (CVE-2015-1421,
    Important)

  • It was found that the Linux kernel’s implementation of vectored pipe read
    and write functionality did not take into account the I/O vectors that were
    already processed when retrying after a failed atomic access operation,
    potentially resulting in memory corruption due to an I/O vector array
    overrun. A local, unprivileged user could use this flaw to crash the system
    or, potentially, escalate their privileges on the system. (CVE-2015-1805,
    Important)

The CVE-2015-1421 issue was discovered by Sun Baoliang of Red Hat, and the
security impact of the CVE-2015-1805 issue was discovered by Red Hat.

All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6x86_64kernel-debug-devel< 2.6.32-220.63.2.el6kernel-debug-devel-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6x86_64kernel< 2.6.32-220.63.2.el6kernel-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6x86_64kernel-debug-debuginfo< 2.6.32-220.63.2.el6kernel-debug-debuginfo-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6srckernel< 2.6.32-220.63.2.el6kernel-2.6.32-220.63.2.el6.src.rpm
RedHat6x86_64python-perf< 2.6.32-220.63.2.el6python-perf-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6x86_64kernel-debuginfo-common-x86_64< 2.6.32-220.63.2.el6kernel-debuginfo-common-x86_64-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6noarchkernel-firmware< 2.6.32-220.63.2.el6kernel-firmware-2.6.32-220.63.2.el6.noarch.rpm
RedHat6x86_64perf-debuginfo< 2.6.32-220.63.2.el6perf-debuginfo-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6x86_64python-perf-debuginfo< 2.6.32-220.63.2.el6python-perf-debuginfo-2.6.32-220.63.2.el6.x86_64.rpm
RedHat6noarchkernel-doc< 2.6.32-220.63.2.el6kernel-doc-2.6.32-220.63.2.el6.noarch.rpm
Rows per page:
1-10 of 151

Related

nessus 62
redhat 17
threatpost 3
openvas 41
prion 3
oraclelinux 14
ubuntucve 3
f5 5
centos 6
debiancve 3
androidsecurity 1
android 2
veracode 7
cve 3
suse 5
ubuntu 10
thn 2
securityvulns 2
debian 3
osv 2
amazon 1
googleprojectzero 1
ibm 2
mageia 1
nessus
nessus
RHEL 6 : kernel (RHSA-2015:1082)
2015-06-10 00:00:00
Oracle Linux 5 : ELSA-2015-1042-1: / kernel (ELSA-2015-10421)
2023-09-07 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (SOL17458)
2015-10-20 00:00:00
redhat
redhat
(RHSA-2015:1042) Important: kernel security and bug fix update
2015-06-02 00:00:00
(RHSA-2015:1030) Important: kernel security and bug fix update
2015-05-27 00:00:00
(RHSA-2015:1211) Important: kernel security and bug fix update
2015-07-07 00:00:00
threatpost
threatpost
Android Rooting Application Emergency Patch
2016-03-23 07:00:46
April 2016 Google Android Nexus Security Bulletin
2016-04-04 14:00:22
Google Detects and Boots Tizi Spyware Off Google Play
2017-11-28 12:40:09
openvas
openvas
CentOS Update for kernel CESA-2015:1042 centos5
2015-06-09 00:00:00
RedHat Update for kernel RHSA-2015:1042-01
2015-06-09 00:00:00
Oracle: Security Advisory (ELSA-2015-1042-1)
2015-10-06 00:00:00
prion
prion
Design/Logic Flaw
2015-03-16 10:59:00
Design/Logic Flaw
2015-08-08 10:59:00
Design/Logic Flaw
2016-04-27 17:59:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-03-31 00:00:00
kernel security and bug fix update
2015-06-02 00:00:00
kernel security and bug fix update
2015-06-03 00:00:00
ubuntucve
ubuntucve
CVE-2015-1421
2015-03-16 00:00:00
CVE-2015-1805
2015-06-03 00:00:00
CVE-2016-0774
2016-04-27 00:00:00
f5
f5
SOL17242 - Linux kernel SCTP vulnerability CVE-2015-1421
2015-09-09 00:00:00
K17242 : Linux kernel SCTP vulnerability CVE-2015-1421
2015-09-10 00:00:00
K17458 : Linux kernel vulnerability CVE-2015-1805
2015-10-19 00:00:00
centos
centos
kernel security update
2015-06-03 01:55:17
kernel, perf, python security update
2016-03-23 13:20:33
kernel, perf, python security update
2015-04-01 03:22:51
debiancve
debiancve
CVE-2015-1805
2015-08-08 10:59:00
CVE-2015-1421
2015-03-16 10:59:00
CVE-2016-0774
2016-04-27 17:59:00
androidsecurity
androidsecurity
Android Security Advisory&hairsp;—&hairsp;2016-03-18
2016-03-18 00:00:00
android
android
pipe inatomic
2015-06-06 00:00:00
CVE-2015-1805
2016-04-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:06:06
Use-After-Free
2019-05-02 05:12:51
Memory Corruption
2019-05-02 05:39:39
cve
cve
CVE-2015-1805
2015-08-08 10:59:00
CVE-2015-1421
2015-03-16 10:59:00
CVE-2016-0774
2016-04-27 17:59:00
suse
suse
Security update for kgraft-patch-SLE12_Update_1, kgraft-patch-SLE12_Update_2 (important)
2015-05-07 20:04:53
Live patch for the Linux Kernel (important)
2015-09-04 12:15:30
Security update for the Linux Kernel (important)
2015-09-02 15:10:18
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2015-07-23 00:00:00
Linux kernel vulnerabilities
2015-07-23 00:00:00
Linux kernel (Utopic HWE) vulnerabilities
2015-03-24 00:00:00
thn
thn
First Android Malware Found Exploiting Dirty COW Linux Flaw to Gain Root Privileges
2017-09-26 02:52:00
This New Android Malware Can Gain Root Access to Your Smartphones
2021-10-29 13:48:00
securityvulns
securityvulns
[SECURITY] [DSA 3290-1] linux security update
2015-06-21 00:00:00
Linux kernel security vulnerabilities
2015-06-21 00:00:00
debian
debian
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
[SECURITY] [DLA 439-1] linux-2.6 security update
2016-02-29 18:43:11
osv
osv
linux - security update
2015-06-18 00:00:00
linux-2.6 - security update
2016-02-29 00:00:00
amazon
amazon
Medium: kernel
2015-07-22 10:00:00
googleprojectzero
googleprojectzero
In-the-Wild Series: Android Exploits
2021-01-12 00:00:00
ibm
ibm
Security Bulletin: Multiple Kernel vulnerabilities affect PowerKVM (Multiple CVEs)
2018-06-18 01:28:02
Security Bulletin: PowerKVM is affected by Linux Kernel vulnerabilities (multiple CVEs)
2018-06-18 01:28:49
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-02-17 21:38:13

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.059 Low

EPSS

Percentile

92.3%

JSON
Related for RHSA-2015:1082
nessus62redhat17threatpost3openvas41prion3oraclelinux14ubuntucve3f55centos6debiancve3androidsecurity1android2veracode7cve3suse5ubuntu10thn2securityvulns2debian3osv2amazon1googleprojectzero1ibm2mageia1