Vulnerability Description
GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability than CVE-2015-8215.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnome | Networkmanager | < 1.2.0 |
| Suse | Linux Enterprise Debuginfo | 11 |
| Suse | Linux Enterprise Desktop | 11 |
| Suse | Linux Enterprise Real Time Extension | 11 |
| Suse | Linux Enterprise Server | 11 |
| Suse | Linux Enterprise Software Development Kit | 11 |
| Suse | Linux Enterprise Workstation Extension | 12 |
| Canonical | Ubuntu Linux | 12.04 |
| Oracle | Linux | 7 |
References
- http://cgit.freedesktop.org/NetworkManager/NetworkManager/commit/?id=d5fc88e573fIssue TrackingPatchThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00018.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.htmlMailing ListThird Party Advisory
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.hThird Party Advisory
- http://www.securityfocus.com/bid/76814Third Party AdvisoryVDB Entry
- http://www.ubuntu.com/usn/USN-2792-1Mailing ListThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1192132Issue TrackingThird Party Advisory
- http://cgit.freedesktop.org/NetworkManager/NetworkManager/commit/?id=d5fc88e573fIssue TrackingPatchThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2015-0272?
CVE-2015-0272 is a vulnerability with a CVSS score of 5.0 (MEDIUM). GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability than...
How severe is CVE-2015-0272?
CVE-2015-0272 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0272?
Check the references section above for vendor advisories and patch information. Affected products include: Gnome Networkmanager, Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Desktop, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server.