3.3

CVE-2015-2922

Exploit
The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version <= 3.19.5
FedoraprojectFedora Version20
FedoraprojectFedora Version21
FedoraprojectFedora Version22
OracleLinux Version5.0
OracleSolaris Version11.3
RedhatEnterprise Mrg Version2.5
DebianDebian Linux Version7.0
DebianDebian Linux Version8.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.05% 0.859
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 6.5 2.9
AV:A/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
Third Party Advisory
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155804.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155854.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155908.html
Third Party Advisory
http://www.debian.org/security/2015/dsa-3237
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00023.html
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html
http://rhn.redhat.com/errata/RHSA-2015-1221.html
http://rhn.redhat.com/errata/RHSA-2015-1534.html
http://rhn.redhat.com/errata/RHSA-2015-1564.html
Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6fd99094de2b83d1d4c8457f2c83483b2828e75a
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.19.6
Vendor Advisory
Exploit
http://www.openwall.com/lists/oss-security/2015/04/04/2
Exploit
http://www.securityfocus.com/bid/74315
http://www.securitytracker.com/id/1032417
https://bugzilla.redhat.com/show_bug.cgi?id=1203712
Issue Tracking
https://github.com/torvalds/linux/commit/6fd99094de2b83d1d4c8457f2c83483b2828e75a