CVE-2015-8812
CRITICAL severity · CVSS 9.8
9.8CVSS CRITICAL
Summary
drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges requiredNone
User interactionNone
Confidentiality impactHigh
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)14%
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00025.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00026.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00027.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00028.htmlAdvisory