Lucene search

K
ubuntucveUbuntu.comUB:CVE-2015-5707
HistoryAug 03, 2015 - 12:00 a.m.

CVE-2015-5707

2015-08-0300:00:00
ubuntu.com
ubuntu.com
9

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

EPSS

0

Percentile

10.1%

Integer overflow in the sg_start_req function in drivers/scsi/sg.c in the
Linux kernel 2.6.x through 4.x before 4.1 allows local users to cause a
denial of service or possibly have unspecified other impact via a large
iov_count value in a write request.

Bugs

Notes

Author Note
jdstrand android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
sbeattie Probably introduced in https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=10db10d144c0248f285242f79daf6b9de6b00a62 (v2.6.28-rc1) Fixed by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=451a2886b6bf90e2fb378f7c46c655450fb96e81 (v4.1-rc1) and Fixed by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdc81f45e9f57858da6351836507fbcf1b7583ee (v4.1-rc1) see note about backporting in oss-security message.
kamal As per BenH’s notes, the fdc81f45 fix requires import_iovec() from bc917be8 (v4.1-rc1), so set the ‘break’ SHA for that to bc917be8.
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-91.129UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-63.103UNKNOWN
ubuntu15.04noarchlinux< 3.19.0-28.30UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1656.78UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-63.104~precise1UNKNOWN
ubuntu14.04noarchlinux-lts-utopic< 3.16.0-50.66~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-vivid< 3.19.0-28.30~14.04.1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1471.92UNKNOWN

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

EPSS

0

Percentile

10.1%