VDB
GCVE-110-MAGEIA-2015-450
GCVE-110-MAGEIA-2015-450
Advisory Published
This kernel update is based on upstream 4.1.13 longterm kernel and fixes
the following security issues:
The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel
before 4.2 attempts to support a FRAGLIST feature without proper memory
allocation, which allows guest OS users to cause a denial of service (buffer
overflow and memory corruption) via a crafted sequence of fragmented packets.
(CVE-2015-5156)
A guest to host DoS issue was found affecting various hypervisors. In that,
a guest can DoS the host by triggering an infinite stream of "alignment
check" (#AC) exceptions. This causes the microcode to enter an infinite loop
where the core never receives another interrupt. The host kernel panics due
to this effect (CVE-2015-5307).
A guest to host DoS issue was found affecting various hypervisors. In that,
a guest can DoS the host by triggering an infinite stream of "debug check"
(#DB) exceptions. This causes the microcode to enter an infinite loop where
the core never receives another interrupt. The host kernel panics due to
this effect (CVE-2015-8104).
For other fixes in this update, see the referenced changelog.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | kernel-userspace-headers | 0 (affected), 4.1.13-2.mga5 (unaffected) | — |
| Mageia | kmod-xtables-addons | 0 (affected), 2.7-6.mga5 (unaffected) | — |
| Mageia | kernel | 0 (affected), 4.1.13-2.mga5 (unaffected) | — |
| Mageia | kmod-nvidia304 | 0 (affected), 304.128-3.mga5.nonfree (unaffected) | — |
| Mageia | kmod-nvidia340 | 340.93-3.mga5.nonfree (unaffected), 0 (affected) | — |
| Mageia | kmod-nvidia-current | 346.96-3.mga5.nonfree (unaffected), 0 (affected) | — |
| Mageia | kmod-broadcom-wl | 6.30.223.271-3.mga5.nonfree (unaffected), 0 (affected) | — |
| Mageia | kmod-fglrx | 0 (affected), 15.200.1046-7.mga5.nonfree (unaffected) | — |
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.