Lucene search
UbuntuUSN-2798-1HistoryNov 05, 2015 - 12:00 a.m.
Linux kernel (Vivid HWE) vulnerabilities
2015-11-0500:00:00
ubuntu.com
48
6.8 Medium
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
61.6%
Releases
- Ubuntu 14.04 ESM
Packages
- linux-lts-vivid - Linux hardware enablement kernel from Vivid
Details
It was discovered that in certain situations, a directory could be renamed
outside of a bind mounted location. An attacker could use this to escape
bind mount containment and gain access to sensitive information.
(CVE-2015-2925)
Moein Ghasemzadeh discovered that the USB WhiteHEAT serial driver contained
hardcoded attributes about the USB devices. An attacker could construct a
fake WhiteHEAT USB device that, when inserted, causes a denial of service
(system crash). (CVE-2015-5257)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.04 | noarch | linux-image-3.19.0-32-generic | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | block-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | crypto-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | fat-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | fb-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | firewire-core-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | floppy-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | fs-core-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | fs-secondary-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | input-modules-3.19.0-32-generic-di | < 3.19.0-32.37~14.04.1 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-2799-1)
2015-11-06 00:00:00
Ubuntu: Security Advisory (USN-2795-1)
2015-11-06 00:00:00
Ubuntu: Security Advisory (USN-2794-1)
2015-11-06 00:00:00
nessus
nessus
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2795-1)
2015-11-06 00:00:00
Ubuntu 15.04 : linux vulnerabilities (USN-2799-1)
2015-11-06 00:00:00
Debian DLA-325-1 : linux-2.6 security update
2015-10-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-11-05 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2015-11-05 00:00:00
Linux kernel vulnerabilities
2015-11-05 00:00:00
cloudfoundry
cloudfoundry
USN-2798-1 Linux kernel vulnerability | Cloud Foundry
2015-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-4.1.10-100.fc21
2015-11-01 22:25:14
[SECURITY] Fedora 22 Update: kernel-4.1.10-200.fc22
2015-10-09 10:30:07
[SECURITY] Fedora 23 Update: kernel-4.2.2-300.fc23
2015-10-03 18:04:46
osv
osv
linux-2.6 - security update
2015-10-12 00:00:00
linux - security update
2015-10-13 00:00:00
linux - security update
2015-09-21 00:00:00
debian
debian
[SECURITY] [DLA 325-1] linux-2.6 security update
2015-10-12 17:20:28
[SECURITY] [DSA 3372-1] linux security update
2015-10-13 09:55:29
[SECURITY] [DSA 3372-1] linux security update
2015-10-13 09:55:29
ubuntucve
ubuntucve
CVE-2015-2925
2015-04-06 00:00:00
CVE-2015-5257
2015-09-24 00:00:00
cve
cve
mageia
mageia
Updated kernel packages fixes security vulnerability
2015-11-07 23:11:27
Updated kernel-linus packages fixes security vulnerability
2015-11-10 21:41:41
Updated kernel-linus packages fix security vulnerabilities
2016-06-22 22:08:04
prion
prion
Design/Logic Flaw
2015-11-16 11:59:00
Null pointer dereference
2015-11-16 11:59:00
debiancve
debiancve
CVE-2015-2925
2015-11-16 11:59:00
CVE-2015-5257
2015-11-16 11:59:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-01-08 00:00:00
kernel security and bug fix update
2015-12-15 00:00:00
kernel security, bug fix, and enhancement update
2015-11-24 00:00:00
veracode
veracode
Improper Access Control
2019-05-02 05:20:50
f5
f5
redhat
redhat
(RHSA-2015:2587) Important: kernel security, bug fix, and enhancement update
2015-12-09 08:43:06
(RHSA-2016:0068) Important: kernel-rt security update
2016-01-26 00:00:00
(RHSA-2015:2636) Important: kernel security and bug fix update
2015-12-15 00:00:00
amazon
amazon
Medium: kernel
2015-10-27 13:40:00
suse
suse
Security update for kernel live patch SP1 0 (important)
2016-02-04 19:13:10
Security update for kernel live patch 7 (important)
2016-02-08 18:22:32
Security update for kernel live patch 3 (important)
2016-02-08 18:11:26
centos
centos
kernel, perf, python security update
2015-12-16 00:07:51
kernel, perf, python security update
2015-11-30 19:36:22
securityvulns
securityvulns
[SECURITY] [DSA 3364-1] linux security update
2015-10-05 00:00:00
Linux kernel multiple security vulnerabilities
2015-09-21 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:33:24
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04
6.8 Medium
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
61.6%
Related for USN-2798-1