Vulnerability Details CVE-2015-8019
The skb_copy_and_csum_datagram_iovec function in net/core/datagram.c in the Linux kernel 3.14.54 and 3.18.22 does not accept a length argument, which allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a write system call followed by a recvmsg system call.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.1%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html
- http://patchwork.ozlabs.org/patch/530642/
- http://www.openwall.com/lists/oss-security/2015/10/27/11
- http://www.securityfocus.com/bid/77326
- https://bugzilla.redhat.com/show_bug.cgi?id=1276588
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html
- http://patchwork.ozlabs.org/patch/530642/
- http://www.openwall.com/lists/oss-security/2015/10/27/11
- http://www.securityfocus.com/bid/77326
- https://bugzilla.redhat.com/show_bug.cgi?id=1276588
Products affected by CVE-2015-8019
-
cpe:2.3:o:linux:linux_kernel:3.14.54
-
cpe:2.3:o:linux:linux_kernel:3.18.22