[USN-2760-1] Linux kernel (OMAP4) vulnerabilities
Several security issues were fixed in the kernel.
It was discovered that an integer overflow error existed in the SCSI
generic (sg) driver in the Linux kernel. A local attacker with write
permission to a SCSI generic device could use this to cause a denial of
service (system crash) or potentially escalate their privileges.
(CVE-2015-5707)
Marc-André Lureau discovered that the vhost driver did not properly
release the userspace provided log file descriptor. A privileged attacker
could use this to cause a denial of service (resource exhaustion).
(CVE-2015-6252)
It was discovered that the Linux kernel's perf subsystem did not bound
callchain backtraces on PowerPC 64. A local attacker could use this to
cause a denial of service. (CVE-2015-6526)
- ID
- USN-2760-1
- Severity
- medium
- Severity from
- CVE-2015-6526
- URL
- https://ubuntu.com/security/notices/USN-2760-1
- Published
-
2015-10-01T21:11:44
(9 years ago) - Modified
-
2015-10-01T21:11:44
(9 years ago) - Other Advisories
-
- DSA-3329-1
- DSA-3364-1
- ELSA-2015-2152
- ELSA-2017-3534
- ELSA-2017-3535
- ELSA-2017-3566
- ELSA-2017-3567
- RHSA-2015:2152
- SUSE-SU-2015:1478-1
- SUSE-SU-2015:1592-1
- SUSE-SU-2015:1611-1
- SUSE-SU-2015:1678-1
- SUSE-SU-2015:1727-1
- SUSE-SU-2015:2084-1
- SUSE-SU-2015:2085-1
- SUSE-SU-2015:2086-1
- SUSE-SU-2015:2087-1
- SUSE-SU-2015:2089-1
- SUSE-SU-2015:2090-1
- SUSE-SU-2015:2091-1
- SUSE-SU-2015:2108-1
- SUSE-SU-2015:2167-1
- SUSE-SU-2016:0354-1
- SUSE-SU-2016:0585-1
- SUSE-SU-2016:0785-1
- SUSE-SU-2016:2074-1
- USN-2733-1
- USN-2734-1
- USN-2737-1
- USN-2738-1
- USN-2748-1
- USN-2749-1
- USN-2750-1
- USN-2751-1
- USN-2752-1
- USN-2759-1
- USN-2777-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |