Back to search
CVE-2015-8019
Published: May 2, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
The skb_copy_and_csum_datagram_iovec function in net/core/datagram.c in the Linux kernel 3.14.54 and 3.18.22 does not accept a length argument, which allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a write system call followed by a recvmsg system call.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20151027 CVE Request: Linux kernel: Buffer overflow when copying data from skbuff to userspace
mailing-list
x_refsource_MLIST
SUSE-SU-2016:1994
vendor-advisory
x_refsource_SUSE
SUSE-SU-2016:1961
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=1276588
x_refsource_CONFIRM
SUSE-SU-2016:2009
vendor-advisory
x_refsource_SUSE
http://patchwork.ozlabs.org/patch/530642/
x_refsource_MISC
SUSE-SU-2016:2005
vendor-advisory
x_refsource_SUSE
77326
vdb-entry
x_refsource_BID
SUSE-SU-2016:1995
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now