CVE-2015-5156
CVSS v2.0
6.1 (Medium)
EPSS
0.24 % (62th)
Affected Products
1
Advisories
23
The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2015-10-19 10:59:02
(9 years ago) - Updated Date
-
2023-02-12 23:15:33
(19 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...