Wind River Support Network

HomeDefectsSCP6-623

Fixed

SCP6-623 : Security Advisory - linux - CVE-2015-5156

Created: Oct 29, 2015 Updated: Dec 3, 2018

Resolved Date: Dec 17, 2015

Found In Version: 6.0.0.25

Fix Version: 6.0.0.27

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Kernel

Description

The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5156

Other Downloads

Wind River Linux SCP 6.0.0.27
Wind River Linux SCP 6.0.0.28
Wind River Linux SCP 6.0.0.30
Wind River Linux SCP 6.0.0.31
Wind River Linux SCP 6.0.0.32
Wind River Linux SCP 6.0.0.33
Wind River Linux SCP 6.0.0.34
Wind River Linux SCP 6.0.0.35
Wind River Linux SCP 6.0.0.36
Wind River Linux SCP 6.0.0.37
Wind River Linux SCP 6.0.0.38