Mageia: Security Advisory (MGASA-2016-0014)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Buffer overflow

The virtnetprobe function in drivers/net/virtionet.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service buffer overflow and memory corruption via a crafted sequence of fragmented packets...

CVE-2015-5156

CVE-2015-5156 affects the Linux kernel’s virtio-net implementation. The vulnerability arises in virtnet_probe (drivers/net/virtio_net.c) where a FRAGLIST feature is supported without proper memory allocation, enabling a remote attacker on the local network to trigger a buffer overflow/memory corr...

CVE-2015-5156

The virtnetprobe function in drivers/net/virtionet.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service buffer overflow and memory corruption via a crafted sequence of fragmented packets...