6.7 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.116 Low
EPSS
Percentile
95.2%
A flaw was discovered in the automatic loading of modules in the crypto
subsystem of the Linux kernel. A local user could exploit this flaw to load
installed kernel modules, increasing the attack surface and potentially
using this to gain administrative privileges. (CVE-2013-7421)
A flaw was discovered in the crypto subsystem when screening module names
for automatic module loading if the name contained a valid crypto module
name, eg. vfat(aes). A local user could exploit this flaw to load installed
kernel modules, increasing the attack surface and potentially using this to
gain administrative privileges. (CVE-2014-9644)
Sun Baoliang discovered a use after free flaw in the Linux kernel’s SCTP
(Stream Control Transmission Protocol) subsystem during INIT collisions. A
remote attacker could exploit this flaw to cause a denial of service
(system crash) or potentially escalate their privileges on the system.
(CVE-2015-1421)
Marcelo Leitner discovered a flaw in the Linux kernel’s routing of packets
to too many different dsts/too fast. A remote attacker on the same subnet can exploit this
flaw to cause a denial of service (system crash). (CVE-2015-1465)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.10 | noarch | linux-image-3.16.0-33-powerpc-e500mc | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | block-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | crypto-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | fat-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | fb-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | firewire-core-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | floppy-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | fs-core-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | fs-secondary-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |
Ubuntu | 14.10 | noarch | input-modules-3.16.0-33-generic-di | < 3.16.0-33.44 | UNKNOWN |