Published: 28/12/2015 Updated: 07/06/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 615

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

The networking implementation in the Linux kernel up to and including 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer dereference and system crash) or possibly gain privileges by leveraging CLONE_NEWUSER support to execute a crafted SOCK_RAW application.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, information leak or data loss CVE-2013-7446 Dmitry Vyukov discovered that a particular sequence of valid operations on local (AF_UNIX) sockets can result in a use-after-free This may be used to cause a denial o ...

Debian Bug report logs - #813573 php-horde: CVE-2016-2228: Reflected cross-site scripting in menu bar Package: php-horde; Maintainer for php-horde is Horde Maintainers <team+debian-horde-team@trackerdebianorg>; Source for php-horde is src:php-horde (PTS, buildd, popcon) Reported by: Mathieu Parent <mathparent@gmailcom ...

Debian Bug report logs - #813590 php-horde-core: CVE-2015-8807: XSS in Horde_Core_VarRenderer_Html Package: php-horde-core; Maintainer for php-horde-core is Horde Maintainers <team+debian-horde-team@trackerdebianorg>; Source for php-horde-core is src:php-horde-core (PTS, buildd, popcon) Reported by: Mathieu Parent <math ...

Debian Bug report logs - #808293 Regression in short UDP reads caused by "net: Fix skb csum races when peeking" Package: src:linux; Maintainer for src:linux is Debian Kernel Team <debian-kernel@listsdebianorg>; Affects: freeradius Reported by: Francesco Politi <fpoliti@micsoit> Date: Fri, 18 Dec 2015 12:09:01 UTC ...

Several security issues were fixed in the kernel ...

USN-2910-1 introduced a regression in the Ubuntu 1504 Linux kernel backported to Ubuntu 1404 LTS ...

Several security issues were fixed in the kernel ...

NVD-CWE-Other http://www.openwall.com/lists/oss-security/2015/12/09/5 https://bugzilla.redhat.com/show_bug.cgi?id=1290475 https://github.com/torvalds/linux/commit/79462ad02e861803b3840cc782248c7359451cd9 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=79462ad02e861803b3840cc782248c7359451cd9 http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html http://rhn.redhat.com/errata/RHSA-2016-0855.html http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html http://www.securityfocus.com/bid/79698 http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html http://www.ubuntu.com/usn/USN-2890-1 http://www.ubuntu.com/usn/USN-2890-3 http://www.securitytracker.com/id/1034892 http://www.ubuntu.com/usn/USN-2890-2 http://www.ubuntu.com/usn/USN-2888-1 http://www.ubuntu.com/usn/USN-2886-1 http://www.debian.org/security/2015/dsa-3426 http://www.debian.org/security/2016/dsa-3434 http://rhn.redhat.com/errata/RHSA-2016-2584.html http://rhn.redhat.com/errata/RHSA-2016-2574.html https://access.redhat.com/errata/RHSA-2016:2574 https://nvd.nist.gov https://usn.ubuntu.com/2886-1/https://www.debian.org/security/./dsa-3426

Get Started

CVE-2015-8543

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect