[USN-2759-1] Linux kernel vulnerabilities
Several security issues were fixed in the kernel.
It was discovered that an integer overflow error existed in the SCSI
generic (sg) driver in the Linux kernel. A local attacker with write
permission to a SCSI generic device could use this to cause a denial of
service (system crash) or potentially escalate their privileges.
(CVE-2015-5707)
Marc-André Lureau discovered that the vhost driver did not properly
release the userspace provided log file descriptor. A privileged attacker
could use this to cause a denial of service (resource exhaustion).
(CVE-2015-6252)
It was discovered that the Linux kernel's perf subsystem did not bound
callchain backtraces on PowerPC 64. A local attacker could use this to
cause a denial of service. (CVE-2015-6526)
- ID
- USN-2759-1
- Severity
- medium
- Severity from
- CVE-2015-6526
- URL
- https://ubuntu.com/security/notices/USN-2759-1
- Published
-
2015-10-01T20:49:11
(9 years ago) - Modified
-
2015-10-01T20:49:11
(9 years ago) - Other Advisories
-
- DSA-3329-1
- DSA-3364-1
- ELSA-2015-2152
- ELSA-2017-3534
- ELSA-2017-3535
- ELSA-2017-3566
- ELSA-2017-3567
- RHSA-2015:2152
- SUSE-SU-2015:1478-1
- SUSE-SU-2015:1592-1
- SUSE-SU-2015:1611-1
- SUSE-SU-2015:1678-1
- SUSE-SU-2015:1727-1
- SUSE-SU-2015:2084-1
- SUSE-SU-2015:2085-1
- SUSE-SU-2015:2086-1
- SUSE-SU-2015:2087-1
- SUSE-SU-2015:2089-1
- SUSE-SU-2015:2090-1
- SUSE-SU-2015:2091-1
- SUSE-SU-2015:2108-1
- SUSE-SU-2015:2167-1
- SUSE-SU-2016:0354-1
- SUSE-SU-2016:0585-1
- SUSE-SU-2016:0785-1
- SUSE-SU-2016:2074-1
- USN-2733-1
- USN-2734-1
- USN-2737-1
- USN-2738-1
- USN-2748-1
- USN-2749-1
- USN-2750-1
- USN-2751-1
- USN-2752-1
- USN-2760-1
- USN-2777-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |