CVE-2015-8539

Note

Debian's triage suggested this was introduced by
146aa8b1453bd8f1ff2304ffb71b4ee0eb9acdcc
verified this is an issue with precise's kernel, the second
reproducer in the git commit results in a NULL pointer exception
As sbeattie mentioned above, this is present prior to 4.4.
I'm setting the break commit to the start of git history which is
after user keys were added

Package	Release	Status
linux-aws Launchpad, Ubuntu, Debian	trusty	Not vulnerable (4.4.0-1002.2)
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.4.0-1001.10)
	bionic	Not vulnerable (4.15.0-1001.1)
	cosmic	Not vulnerable (4.15.0-1007.7)
linux-azure Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.15.0-1002.2)
	cosmic	Not vulnerable (4.15.0-1009.9)
	trusty	Not vulnerable (4.15.0-1023.24~14.04.1)
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.11.0-1009.9)
linux-azure-edge Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.18.0-1003.3~18.04.1)
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.15.0-1002.2)
linux-euclid Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.4.0-9019.20)
linux-flo Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [abandoned])
	upstream	Released (4.4~rc3)
	xenial	Ignored (abandoned)
linux-gcp Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.15.0-1001.1)
	cosmic	Not vulnerable (4.15.0-1006.6)
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.10.0-1004.4)
linux-gke Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Ignored (end of standard support)
linux-hwe Launchpad, Ubuntu, Debian	bionic	Not vulnerable
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.8.0-36.36~16.04.1)
linux-hwe-edge Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.18.0-8.9~18.04.1)
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.8.0-36.36~16.04.1)
linux-kvm Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.15.0-1002.2)
	cosmic	Not vulnerable (4.15.0-1008.8)
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.4.0-1004.9)
linux-lts-utopic Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [end of standard support])
	upstream	Released (4.4~rc3)
	xenial	Does not exist
linux-lts-vivid Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [end of standard support])
	upstream	Released (4.4~rc3)
	xenial	Does not exist
linux-lts-wily Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [end of standard support])
	upstream	Released (4.4~rc3)
	xenial	Does not exist
linux-lts-xenial Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Not vulnerable (4.4.0-13.29~14.04.1)
	upstream	Released (4.4~rc3)
	xenial	Does not exist
linux-maguro Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	upstream	Released (4.4~rc3)
	trusty	Does not exist (trusty was ignored [abandoned])
	xenial	Does not exist
linux-mako Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [abandoned])
	upstream	Released (4.4~rc3)
	xenial	Ignored (abandoned)
linux-manta Launchpad, Ubuntu, Debian	bionic	Does not exist
	cosmic	Does not exist
	trusty	Does not exist (trusty was ignored [abandoned])
	upstream	Released (4.4~rc3)
	xenial	Does not exist
linux-oem Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.15.0-1002.3)
	cosmic	Not vulnerable (4.15.0-1004.5)
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.13.0-1008.9)
linux-raspi2 Launchpad, Ubuntu, Debian	bionic	Not vulnerable (4.13.0-1005.5)
	cosmic	Not vulnerable (4.15.0-1010.11)
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.4.0-1003.4)
linux-snapdragon Launchpad, Ubuntu, Debian	bionic	Not vulnerable
	cosmic	Does not exist
	trusty	Does not exist
	upstream	Released (4.4~rc3)
	xenial	Not vulnerable (4.4.0-1012.12)
linux Launchpad, Ubuntu, Debian	upstream	Released (4.4~rc3)
	trusty	Released (3.13.0-161.211)
	xenial	Not vulnerable (4.4.0-2.16)
	bionic	Not vulnerable (4.13.0-16.19)
	cosmic	Not vulnerable (4.15.0-20.21)
	Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by 096fe9eaea40a17e125569f9e657e34cdb6d73bd
linux-lts-trusty Launchpad, Ubuntu, Debian	upstream	Released (4.4~rc3)
	trusty	Does not exist
	xenial	Does not exist
	bionic	Does not exist
	cosmic	Does not exist
linux-goldfish Launchpad, Ubuntu, Debian	upstream	Released (4.4~rc3)
	trusty	Does not exist (trusty was ignored [abandoned])
	xenial	Ignored (end of life)
	bionic	Does not exist
	cosmic	Does not exist
linux-grouper Launchpad, Ubuntu, Debian	upstream	Released (4.4~rc3)
	trusty	Does not exist (trusty was ignored [abandoned])
	xenial	Does not exist
	bionic	Does not exist
	cosmic	Does not exist

Parameter	Value
Base score	7.8
Attack vector	Local
Attack complexity	Low
Privileges required	Low
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Security

CVE-2015-8539

From the Ubuntu Security Team

Notes

Priority

Cvss 3 Severity Score

Status

Severity score breakdown

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading