CVE-2015-4004
high
CVSS v3
—
CVSS v2
8.5
VIR risk
8.5
Description
The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read and system crash) via a crafted packet.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-4004
Vendor advisory: cve@mitre.org — https://lkml.org/lkml/2015/5/13/739
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 4.3-1 |
| debian | bullseye | fixed | 4.3-1 |
| debian | forky | fixed | 4.3-1 |
| debian | sid | fixed | 4.3-1 |
| debian | trixie | fixed | 4.3-1 |
| linux-kernel | affected | 4.3 | |
| ubuntu | 12.04 | affected | |
| ubuntu | 14.04 | affected | |
| ubuntu | 15.10 | affected | |
References
- http://openwall.com/lists/oss-security/2015/06/05/7
- http://www.securityfocus.com/bid/74669
- http://www.ubuntu.com/usn/USN-2989-1
- http://www.ubuntu.com/usn/USN-2998-1
- http://www.ubuntu.com/usn/USN-3000-1
- http://www.ubuntu.com/usn/USN-3001-1
- http://www.ubuntu.com/usn/USN-3002-1
- http://www.ubuntu.com/usn/USN-3003-1
- http://www.ubuntu.com/usn/USN-3004-1
- https://lkml.org/lkml/2015/5/13/739
- https://security-tracker.debian.org/tracker/CVE-2015-4004
CWEs
CWE-119
Verify integrity in audit chain (admin only). AS-IS.