Published: 27/05/2015 Updated: 07/11/2023

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 437

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

include/net/netfilter/nf_conntrack_extend.h in the netfilter subsystem in the Linux kernel prior to 3.14.5 uses an insufficiently large data type for certain extension data, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via outbound network traffic that triggers extension loading, as demonstrated by configuring a PPTP tunnel in a NAT environment.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Debian Bug report logs - #782561 Buffer overruns in Linux kernel RFC4106 implementation using AESNI (CVE-2015-3331) Package: src:linux; Maintainer for src:linux is Debian Kernel Team <debian-kernel@listsdebianorg>; Reported by: Romain Francoise <rfrancoise@debianorg> Date: Tue, 14 Apr 2015 08:57:02 UTC Severity: n ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2014-8159 It was found that the Linux kernel's InfiniBand/RDMA subsystem did not properly sanitize input parameters while registering memory regions from user space via the (u)verbs API ...

The system could be made to crash if it received specially crafted network traffic ...

Several security issues were fixed in the kernel ...

An integer overflow flaw was found in the way the Linux kernel's netfilter connection tracking implementation loaded extensions An attacker on a local network could potentially send a sequence of specially crafted packets that would initiate the loading of a large number of extensions, causing the targeted system in that network to crash ...

NVD-CWE-Other http://www.openwall.com/lists/oss-security/2015/04/08/1 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.5 http://marc.info/?l=netfilter-devel&m=140112364215200&w=2 https://github.com/torvalds/linux/commit/223b02d923ecd7c84cf9780bb3686f455d279279 https://bugzilla.redhat.com/show_bug.cgi?id=1208684 http://www.debian.org/security/2015/dsa-3237 http://rhn.redhat.com/errata/RHSA-2015-1564.html http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html http://www.securityfocus.com/bid/73953 http://rhn.redhat.com/errata/RHSA-2015-1534.html http://www.securitytracker.com/id/1032415 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=223b02d923ecd7c84cf9780bb3686f455d279279 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782561 https://nvd.nist.gov https://usn.ubuntu.com/2611-1/https://access.redhat.com/security/cve/cve-2014-9715 https://www.debian.org/security/./dsa-3237

CVE-2014-9715

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect