Lucene search

K
ubuntuUbuntuUSN-2665-1
HistoryJul 07, 2015 - 12:00 a.m.

Linux kernel (Vivid HWE) vulnerabilities

2015-07-0700:00:00
ubuntu.com
40

6.7 Medium

AI Score

Confidence

High

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.041 Low

EPSS

Percentile

92.0%

Releases

  • Ubuntu 14.04 ESM

Packages

  • linux-lts-vivid - Linux hardware enablement kernel from Vivid

Details

A race condition was discovered in the Linux kernelโ€™s file_handle size
verification. A local user could exploit this flaw to read potentially
sensative memory locations. (CVE-2015-1420)

A underflow error was discovered in the Linux kernelโ€™s Ozmo Devices USB
over WiFi host controller driver. A remote attacker could exploit this flaw
to cause a denial of service (system crash) or potentially execute
arbitrary code via a specially crafted packet. (CVE-2015-4001)

A bounds check error was discovered in the Linux kernelโ€™s Ozmo Devices USB
over WiFi host controller driver. A remote attacker could exploit this flaw
to cause a denial of service (system crash) or potentially execute
arbitrary code via a specially crafted packet. (CVE-2015-4002)

A division by zero error was discovered in the Linux kernelโ€™s Ozmo Devices
USB over WiFi host controller driver. A remote attacker could exploit this
flaw to cause a denial of service (system crash). (CVE-2015-4003)

A double free flaw was discovered in the Linux kernelโ€™s path lookup. A
local user could cause a denial of service (Oops). (CVE-2015-5706)

6.7 Medium

AI Score

Confidence

High

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

0.041 Low

EPSS

Percentile

92.0%