CVE-2015-5707

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 19-10-2015 12:59

Last modified: - 21-09-2022 08:44

Total changes: - 2

Description

Integer overflow in the sg_start_req function in drivers/scsi/sg.c in the Linux kernel 2.6.x through 4.x before 4.1 allows local users to cause a denial of service or possibly have unspecified other impact via a large iov_count value in a write request.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:L/Au:N/C:P/I:P/A:P

Low

Attack complexity

Local

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

4.6

Base score

3.9

6.4

Exploitability score

Impact score

Verification logic

Reference

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fdc81f45e9f57858da6351836507fbcf1b7583ee
https://github.com/torvalds/linux/commit/fdc81f45e9f57858da6351836507fbcf1b7583ee
https://github.com/torvalds/linux/commit/451a2886b6bf90e2fb378f7c46c655450fb96e81
[oss-security] 20150801 CVE request: Integer overflow in SCSI generic driver in Linux <4.1-Mailing List, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1250030
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=451a2886b6bf90e2fb378f7c46c655450fb96e81
76145-Third Party Advisory, VDB Entry
SUSE-SU-2015:2087-Mailing List, Third Party Advisory
SUSE-SU-2015:2086-Mailing List, Third Party Advisory
SUSE-SU-2015:2091-Mailing List, Third Party Advisory
SUSE-SU-2015:2090-Mailing List, Third Party Advisory
SUSE-SU-2015:2089-Mailing List, Third Party Advisory
SUSE-SU-2015:2084-Mailing List, Third Party Advisory
SUSE-SU-2015:2085-Mailing List, Third Party Advisory
SUSE-SU-2015:1611-Mailing List, Third Party Advisory
USN-2760-1-Third Party Advisory
USN-2759-1-Third Party Advisory
SUSE-SU-2015:1592-Mailing List, Third Party Advisory
USN-2734-1-Third Party Advisory
USN-2737-1-Third Party Advisory
USN-2733-1-Third Party Advisory
USN-2738-1-Third Party Advisory
USN-2750-1-Third Party Advisory
DSA-3329-Third Party Advisory
SUSE-SU-2015:1478-Mailing List, Third Party Advisory
https://source.android.com/security/bulletin/2017-07-01
1033521-Third Party Advisory, VDB Entry

Keywords

CVE-2015-5707

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2015-5707

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures