CVE-2015-8812

CVSS v3.1 9.8 (Critical)

CVSS v2.0 10 (High)

EPSS 4.51 % (93^th)

Affected Products 3

Advisories 35

drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.

Weaknesses

CWE-NVD-Other

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2016-04-27 17:59:02
(8 years ago)
Updated Date: 2023-01-19 16:13:55
(20 months ago)

Affected Products

Configuration #1

		CPE23	From	Up To
	Novell Suse Linux Enterprise Real Time Extension 12 SP1	cpe:2.3:o:novell:suse_linux_enterprise_real_time_extension:12:sp1

Configuration #2

	CPE23	From	Up To
Linux Kernel prior 3.2.78 version	cpe:2.3:o:linux:linux_kernel		< 3.2.78
Linux Kernel from 3.3 version and prior 3.10.99 version	cpe:2.3:o:linux:linux_kernel	>= 3.3	< 3.10.99
Linux Kernel from 3.11 version and prior 3.12.56 version	cpe:2.3:o:linux:linux_kernel	>= 3.11	< 3.12.56
Linux Kernel from 3.13 version and prior 3.14.63 version	cpe:2.3:o:linux:linux_kernel	>= 3.13	< 3.14.63
Linux Kernel from 3.15 version and prior 3.16.35 version	cpe:2.3:o:linux:linux_kernel	>= 3.15	< 3.16.35
Linux Kernel from 3.17 version and prior 3.18.31 version	cpe:2.3:o:linux:linux_kernel	>= 3.17	< 3.18.31
Linux Kernel from 3.19 version and prior 4.1.22 version	cpe:2.3:o:linux:linux_kernel	>= 3.19	< 4.1.22
Linux Kernel from 4.2.0 version and prior 4.4.4 version	cpe:2.3:o:linux:linux_kernel	>= 4.2.0	< 4.4.4

Configuration #3

		CPE23	From	Up To
	Canonical Ubuntu Linux 12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04:::*:-
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:esm
	Canonical Ubuntu Linux 15.10	cpe:2.3:o:canonical:ubuntu_linux:15.10

Weaknesses

Affected Products

Canonical

Linux

Novell

Configuration #1

Configuration #2

Configuration #3