CVE-2015-4004

Опубликовано: 07 июн. 2015

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 8.5

Описание

The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read and system crash) via a crafted packet.

Релиз	Статус	Примечание
devel	not-affected	4.10.0-19.21
esm-infra-legacy/trusty	released	3.13.0-87.133
esm-infra/xenial	not-affected	4.3.0-1.10
precise	not-affected
precise/esm	not-affected
trusty	released	3.13.0-87.133
trusty/esm	released	3.13.0-87.133
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected
precise/esm	DNE	precise was not-affected
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-1002.2
esm-infra/xenial	not-affected	4.4.0-1001.10
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-1002.2
trusty/esm	not-affected	4.4.0-1002.2
upstream	released	4.3~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	not-affected	4.4.0-1003.3

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life, was needed
precise/esm	ignored	end of life, was needed
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life, was needs-triage
precise/esm	ignored	end of life, was needs-triage
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life, was needed
precise/esm	ignored	end of life, was needed
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	released	3.13.0-88.135~precise1
precise/esm	released	3.13.0-88.135~precise1
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [3.16.0-73.95~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	released	3.16.0-73.95~14.04.1
trusty/esm	DNE	trusty was released [3.16.0-73.95~14.04.1]
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [3.19.0-61.69~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	released	3.19.0-61.69~14.04.1
trusty/esm	DNE	trusty was released [3.19.0-61.69~14.04.1]
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [4.2.0-38.45~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	released	4.2.0-38.45~14.04.1
trusty/esm	DNE	trusty was released [4.2.0-38.45~14.04.1]
upstream	released	4.3~rc1
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	4.3~rc1
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	ignored	end of life

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored]
precise	DNE
precise/esm	DNE
trusty	ignored
trusty/esm	DNE	trusty was ignored
upstream	released	4.3~rc1
utopic	ignored	end of life
vivid	ignored	end of life
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.10.0-1004.6
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	ignored	end of life, was pending

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.4.0-1050.54
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected
precise/esm	DNE	precise was not-affected
trusty	DNE
trusty/esm	DNE
upstream	released	4.3~rc1
utopic	DNE
vivid	DNE
vivid/stable-phone-overlay	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 89%

0.04322

Низкий

8.5 High

CVSS2

Связанные уязвимости

CVE-2015-4004

CVSS3: 6.7

redhat

больше 10 лет назад

CVE-2015-4004

nvd

больше 10 лет назад

CVE-2015-4004

debian

больше 10 лет назад

The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untru ...

GHSA-wchv-79w6-567f

github

больше 3 лет назад

EPSS

Процентиль: 89%

0.04322

Низкий

8.5 High

CVSS2

CVE-2015-4004

Описание

Пакет linux

Пакет linux-armadaxp

Пакет linux-aws

Пакет linux-ec2

Пакет linux-flo

Пакет linux-fsl-imx51

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-linaro-omap

Пакет linux-linaro-shared

Пакет linux-linaro-vexpress

Пакет linux-lts-quantal

Пакет linux-lts-raring

Пакет linux-lts-saucy

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-mvl-dove

Пакет linux-qcm-msm

Пакет linux-raspi2

Пакет linux-snapdragon

Пакет linux-ti-omap4

Ссылки на источники

Связанные уязвимости