Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-4036

Опубликовано: 31 авг. 2015
Источник: nvd
CVSS2: 7.2
EPSS Низкий

Описание

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call. NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.6 (исключая) до 3.10.90 (исключая)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.11 (включая) до 3.12.44 (исключая)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.13 (включая) до 3.14.57 (исключая)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.15 (включая) до 3.16.35 (исключая)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.17 (включая) до 3.18.25 (исключая)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.19 (включая) до 4.0 (исключая)
cpe:2.3:o:linux:linux_kernel:3.6:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:3.6:rc7:*:*:*:*:*:*

EPSS

Процентиль: 29%
0.00104
Низкий

7.2 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2015-4036

ubuntu
больше 10 лет назад

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call. NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

redhat логотип

CVE-2015-4036

redhat
около 11 лет назад

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call. NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

debian логотип

CVE-2015-4036

debian
больше 10 лет назад

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/ ...

github логотип

GHSA-f533-g6c5-65cx

github
больше 3 лет назад

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call. NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

suse-cvrf логотип

SUSE-SU-2015:1324-1

suse-cvrf
больше 10 лет назад

Security update for the SUSE Linux Enterprise 12 kernel

EPSS

Процентиль: 29%
0.00104
Низкий

7.2 High

CVSS2

Дефекты

CWE-119