Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2015-1142857

Опубликовано: 03 дек. 2015
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before e7358f54a3954df16d4f87e3cad35063f1c17de5 and the DPDK before commit 3f12b9f23b6499ff66ec8b0de941fb469297e5d0, additionally Multiple vendor NIC firmware is affected.

Отчет

This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and Red Hat Enterprise MRG-2. This has been rated as having Low security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelWill not fix
Red Hat Enterprise Linux 6kernelWill not fix
Red Hat Enterprise Linux 7kernelWill not fix
Red Hat Enterprise Linux 7kernel-rtWill not fix
Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)openvswitch-dpdkWill not fix
Red Hat Enterprise MRG 2realtime-kernelWill not fix
Red Hat OpenStack Platform 8 (Liberty)openvswitch-dpdkWill not fix
Red Hat OpenStack Platform 9 (Mitaka)openvswitch-dpdkWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=1295480kernel: net: ethernet flow control vulnerability in SRIOV devices

EPSS

Процентиль: 71%
0.0069
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2015-1142857

CVSS3: 8.6
nvd
около 8 лет назад

On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before e7358f54a3954df16d4f87e3cad35063f1c17de5 and the DPDK before commit 3f12b9f23b6499ff66ec8b0de941fb469297e5d0, additionally Multiple vendor NIC firmware is affected.

suse-cvrf логотип

openSUSE-SU-2018:0703-1

suse-cvrf
почти 8 лет назад

Security update for kernel-firmware

suse-cvrf логотип

SUSE-SU-2018:0674-1

suse-cvrf
почти 8 лет назад

Security update for kernel-firmware

suse-cvrf логотип

SUSE-SU-2018:0671-1

suse-cvrf
почти 8 лет назад

Security update for kernel-firmware

github логотип

GHSA-f496-vgq6-3hm4

CVSS3: 8.6
github
больше 3 лет назад

On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe driver before commit f079fa005aae08ee0e1bc32699874ff4f02e11c1, the Linux Kernel i40e/i40evf driver before e7358f54a3954df16d4f87e3cad35063f1c17de5 and the DPDK before commit 3f12b9f23b6499ff66ec8b0de941fb469297e5d0, additionally Multiple vendor NIC firmware is affected.

EPSS

Процентиль: 71%
0.0069
Низкий

4.3 Medium

CVSS2