CVE-2015-4004 — HIGH (8.5) — White Hats Nepal

Q: How severe is CVE-2015-4004?

CVE-2015-4004 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-4004?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Linux Linux Kernel.

Vulnerability Description

The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read and system crash) via a crafted packet.

CVSS Score

8.5

HIGH

AV:N/AC:L/Au:N/C:P/I:N/A:C

Confidentiality

PARTIAL

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	12.04
Linux	Linux Kernel	>= 3.4, < 4.3

Related Weaknesses (CWE)

CWE-119

References

http://openwall.com/lists/oss-security/2015/06/05/7Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/74669Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-2989-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2998-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3000-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3001-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3002-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3003-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3004-1Third Party Advisory
https://lkml.org/lkml/2015/5/13/739ExploitVendor Advisory
http://openwall.com/lists/oss-security/2015/06/05/7Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/74669Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-2989-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2998-1Third Party Advisory
http://www.ubuntu.com/usn/USN-3000-1Third Party Advisory

FAQ

What is CVE-2015-4004?

CVE-2015-4004 is a vulnerability with a CVSS score of 8.5 (HIGH). The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause...

How severe is CVE-2015-4004?

CVE-2015-4004 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-4004?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Linux Linux Kernel.