Vulnerability CVE-2015-8543: Information

Description

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer dereference and system crash) or possibly gain privileges by leveraging CLONE_NEWUSER support to execute a crafted SOCK_RAW application.

Severity: HIGH (7.0) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2015-8543

Published: Dec. 28, 2015

Modified: June 7, 2023

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-std-def	sisyphus	4.1.16-alt1	6.1.89-alt1	ALT-PU-2016-1052-1	156636	Fixed
kernel-image-std-def	p10	4.1.16-alt1	5.10.213-alt1	ALT-PU-2016-1052-1	156636	Fixed
kernel-image-std-def	p9	4.1.16-alt1	5.4.274-alt1	ALT-PU-2016-1052-1	156636	Fixed
kernel-image-std-def	c9f2	4.1.16-alt1	5.10.214-alt0.c9f.2	ALT-PU-2016-1052-1	156636	Fixed
kernel-image-std-def	c7	3.14.59-alt1.M70C.3	4.4.277-alt0.M70C.1	ALT-PU-2016-1071-1	157034	Fixed
kernel-image-un-def	sisyphus	4.4.0-alt1	6.6.29-alt1	ALT-PU-2016-1018-1	155822	Fixed
kernel-image-un-def	p10	4.4.0-alt1	6.1.85-alt1	ALT-PU-2016-1018-1	155822	Fixed
kernel-image-un-def	p9	4.4.0-alt1	5.10.215-alt1	ALT-PU-2016-1018-1	155822	Fixed
kernel-image-un-def	c10f1	4.4.0-alt1	6.1.85-alt0.c10f.1	ALT-PU-2016-1018-1	155822	Fixed
kernel-image-un-def	c9f2	4.4.0-alt1	5.10.29-alt2	ALT-PU-2016-1018-1	155822	Fixed
kernel-image-un-def	c7	4.4.19-alt0.M70C.1	4.9.277-alt0.M70C.1	ALT-PU-2016-1923-1	168838	Fixed
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Fixed
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Fixed
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
[oss-security] 20151209 Re: CVE request - Android kernel - IPv6 connect cause a denial of service	Mailing List Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1290475	Issue Tracking Third Party Advisory
https://github.com/torvalds/linux/commit/79462ad02e861803b3840cc782248c7359451cd9	Vendor Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=79462ad02e861803b3840cc782248c7359451cd9	Vendor Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html	Third Party Advisory
RHSA-2016:0855	Third Party Advisory
SUSE-SU-2016:2074	Mailing List Third Party Advisory
79698	Third Party Advisory VDB Entry
SUSE-SU-2016:0911	Mailing List Third Party Advisory
SUSE-SU-2016:1102	Mailing List Third Party Advisory
USN-2890-1	Third Party Advisory
USN-2890-3	Third Party Advisory
1034892	Third Party Advisory VDB Entry
USN-2890-2	Third Party Advisory
USN-2888-1	Third Party Advisory
USN-2886-1	Third Party Advisory
DSA-3426	Third Party Advisory
DSA-3434	Third Party Advisory
RHSA-2016:2584	Third Party Advisory
RHSA-2016:2574	Third Party Advisory

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.15
  End excliding
  3.16.35
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.13
  End excliding
  3.14.59
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.17
  End excliding
  3.18.26
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.19
  End excliding
  4.1.16
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  4.2
  End excliding
  4.3.4
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  End excliding
  3.2.75
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.3
  End excliding
  3.4.111
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.5
  End excliding
  3.10.95
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.11
  End excliding
  3.12.52

Version: v24.4.2

Vulnerability CVE-2015-8543: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1