VDB
CVE-2015-2877
CVE-2015-2877
REJECTED
** DISPUTED ** Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x does not prevent use of a write-timing side channel, which allows guest OS users to defeat the ASLR protection mechanism on other guest OS instances via a Cross-VM ASL INtrospection (CAIN) attack. NOTE: the vendor states "Basically if you care about this attack vector, disable deduplication." Share-until-written approaches for memory conservation among mutually untrusting tenants are inherently detectable for information disclosure, and can be classified as potentially misunderstood behaviors rather than vulnerabilities.
EPSS 0.11% · 29.4th percentile
Risk Scores
EPSS Score
0.11%
29.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:18.04:LTS | linux-hwe-edge | 5.0.0-20.21~18.04.1, 5.0.0-19.20~18.04.1, 5.0.0-17.18~18.04.1 |
| Ubuntu:Pro:18.04:LTS | linux-hwe | 5.3.0-74.70, 5.3.0-73.69, 5.3.0-70.66 |
| Ubuntu:Pro:16.04:LTS | linux-aws | 4.4.0-1094.105, 4.4.0-1095.106, 4.4.0-1096.107 |
| Ubuntu:Pro:18.04:LTS | linux-oem | 4.15.0-1009.12, 0, 4.15.0-1002.3 |
| Ubuntu:Pro:18.04:LTS | linux-kvm | 4.15.0-1126.131, 4.15.0-1125.130, 4.15.0-1123.128 |
| Ubuntu:Pro:16.04:LTS | linux-hwe | 4.8.0-41.44~16.04.1, 4.15.0-222.233~16.04.1, 4.15.0-220.231~16.04.1 |
| Ubuntu:Pro:18.04:LTS | linux-aws | 4.15.0-1001.1, 4.15.0-1007.7, 4.15.0-1009.9 |
| Ubuntu:Pro:16.04:LTS | linux-gcp | *, 4.10.0-1004.4, 4.10.0-1006.6 |
| Ubuntu:Pro:18.04:LTS | linux-azure-edge | 4.18.0-1008.8~18.04.1, 4.18.0-1007.7~18.04.1, 0 |
| Ubuntu:Pro:16.04:LTS | linux-hwe-edge | 4.10.0-20.22~16.04.1, *, * |
| Ubuntu:Pro:18.04:LTS | linux | 4.15.0-177.186, 4.15.0-175.184, 4.15.0-173.182 |
| Ubuntu:Pro:16.04:LTS | linux-kvm | 4.4.0-1137.147, 4.4.0-1138.148, 4.4.0-1139.149 |
| Ubuntu:Pro:16.04:LTS | linux | 4.4.0-16.32, 4.4.0-213.245, 4.4.0-214.246 |
| Ubuntu:Pro:14.04:LTS | linux-azure | 4.15.0-1137.150~14.04.1, 4.15.0-1142.156~14.04.1, 4.15.0-1149.164~14.04.1 |
| Ubuntu:Pro:16.04:LTS | linux-azure | 4.15.0-1182.197~16.04.1, 4.15.0-1146.161~16.04.1, 4.15.0-1142.156~16.04.1 |
| Ubuntu:Pro:14.04:LTS | linux-lts-xenial | *, 4.4.0-251.285~14.04.1, 4.4.0-252.286~14.04.1 |
| Ubuntu:Pro:14.04:LTS | linux-aws | 4.4.0-1027.30, 4.4.0-1002.2, 4.4.0-1005.5 |
| Ubuntu:Pro:18.04:LTS | linux-gcp | 0, 4.15.0-1040.42, 5.0.0-1031.32 |
| Ubuntu:Pro:14.04:LTS | linux | 3.13.0-142.191, 0, 3.11.0-12.19 |
| Ubuntu:Pro:18.04:LTS | linux-azure | 4.15.0-1002.2, 0, 4.15.0-1037.39 |
Exploit Intelligence
- 76256 (circl)
- VU#935424 (circl)
- http://www.antoniobarresi.com/files/cain_advisory.txt (circl)
- https://www.kb.cert.org/vuls/id/BGAR-A2CNKG (circl)
- https://www.kb.cert.org/vuls/id/BLUU-9ZAHZH (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=1252096 (circl)
- https://www.usenix.org/system/files/conference/woot15/woot15-paper-barresi.pdf (circl)
Timeline
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2015-2877 third-party-advisory
- https://www.usenix.org/conference/woot15/workshop-program/presentation/barresi third-party-advisory
- http://www.antoniobarresi.com/security/cloud/2015/07/30/cain/ third-party-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-2877 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2015-2877 third-party-advisory