VDB

GCVE-110-MAGEIA-2015-450

GCVE-110-MAGEIA-2015-450
Advisory Published
Vulnetix · Advisory published November 19, 2015
This kernel update is based on upstream 4.1.13 longterm kernel and fixes the following security issues: The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets. (CVE-2015-5156) A guest to host DoS issue was found affecting various hypervisors. In that, a guest can DoS the host by triggering an infinite stream of "alignment check" (#AC) exceptions. This causes the microcode to enter an infinite loop where the core never receives another interrupt. The host kernel panics due to this effect (CVE-2015-5307). A guest to host DoS issue was found affecting various hypervisors. In that, a guest can DoS the host by triggering an infinite stream of "debug check" (#DB) exceptions. This causes the microcode to enter an infinite loop where the core never receives another interrupt. The host kernel panics due to this effect (CVE-2015-8104). For other fixes in this update, see the referenced changelog.

Affected Products

VendorProductVersionsPlatforms
Mageiakernel-userspace-headers0 (affected), 4.1.13-2.mga5 (unaffected)
Mageiakmod-xtables-addons0 (affected), 2.7-6.mga5 (unaffected)
Mageiakernel0 (affected), 4.1.13-2.mga5 (unaffected)
Mageiakmod-nvidia3040 (affected), 304.128-3.mga5.nonfree (unaffected)
Mageiakmod-nvidia340340.93-3.mga5.nonfree (unaffected), 0 (affected)
Mageiakmod-nvidia-current346.96-3.mga5.nonfree (unaffected), 0 (affected)
Mageiakmod-broadcom-wl6.30.223.271-3.mga5.nonfree (unaffected), 0 (affected)
Mageiakmod-fglrx0 (affected), 15.200.1046-7.mga5.nonfree (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›