Wind River Support Network

HomeDefectsSCP6-603

Fixed

SCP6-603 : Security Advisory - linux - CVE-2015-4036

Created: Sep 14, 2015 Updated: Dec 3, 2018

Resolved Date: Oct 29, 2015

Found In Version: 6.0.0.24

Fix Version: 6.0.0.26

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Kernel

Description

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call.  NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4036

Other Downloads

Wind River Linux SCP 6.0.0.26
Wind River Linux SCP 6.0.0.27
Wind River Linux SCP 6.0.0.28
Wind River Linux SCP 6.0.0.30
Wind River Linux SCP 6.0.0.31
Wind River Linux SCP 6.0.0.32
Wind River Linux SCP 6.0.0.33
Wind River Linux SCP 6.0.0.34
Wind River Linux SCP 6.0.0.35
Wind River Linux SCP 6.0.0.36
Wind River Linux SCP 6.0.0.37
Wind River Linux SCP 6.0.0.38