CVE 2015-5364
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system hang) via incorrect checksums within a UDP packet flood.
Related bugs and status
CVE-2015-5364 (Candidate) is related to these bugs:
Bug #1472160: CVE-2015-5364
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1472160 | CVE-2015-5364 | linux (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-fsl-imx51 (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-mvl-dove (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ec2 (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ec2 (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-fsl-imx51 (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu Wily) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu Wily) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-mvl-dove (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ti-omap4 (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux (Ubuntu Vivid) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-ec2 (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-fsl-imx51 (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu Vivid) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu Vivid) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-mvl-dove (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ti-omap4 (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu Utopic) | Undecided | Won't Fix | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu Utopic) | Undecided | Won't Fix | ||
1472160 | CVE-2015-5364 | linux (Ubuntu Trusty) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-ec2 (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-fsl-imx51 (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu Trusty) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu Trusty) | Undecided | New | ||
1472160 | CVE-2015-5364 | linux-mvl-dove (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ti-omap4 (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux (Ubuntu Precise) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-ec2 (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-fsl-imx51 (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-backport-maverick (Ubuntu Precise) | Undecided | Won't Fix | ||
1472160 | CVE-2015-5364 | linux-lts-backport-natty (Ubuntu Precise) | Undecided | Won't Fix | ||
1472160 | CVE-2015-5364 | linux-mvl-dove (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-ti-omap4 (Ubuntu Precise) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-lts-trusty (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-trusty (Ubuntu Precise) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-lts-trusty (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-trusty (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-trusty (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-armadaxp (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-armadaxp (Ubuntu Precise) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-armadaxp (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-armadaxp (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-armadaxp (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-goldfish (Ubuntu) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-goldfish (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-goldfish (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-goldfish (Ubuntu Vivid) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-goldfish (Ubuntu Wily) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-lts-saucy (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-saucy (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-saucy (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-saucy (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-saucy (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-quantal (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-quantal (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-quantal (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-quantal (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-quantal (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-flo (Ubuntu) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-flo (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-flo (Ubuntu Trusty) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-flo (Ubuntu Vivid) | Medium | Won't Fix | ||
1472160 | CVE-2015-5364 | linux-flo (Ubuntu Wily) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-lts-vivid (Ubuntu) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-vivid (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-vivid (Ubuntu Trusty) | Medium | Fix Released | ||
1472160 | CVE-2015-5364 | linux-lts-vivid (Ubuntu Vivid) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-lts-vivid (Ubuntu Wily) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-mako (Ubuntu) | Medium | New | ||
1472160 | CVE-2015-5364 | linux-mako (Ubuntu Precise) | Medium | Invalid | ||
1472160 | CVE-2015-5364 | linux-mako (Ubuntu Trusty) | Medium | Invalid |
Bug #1478843: linux: 3.2.0-89.127 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1478843 | linux: 3.2.0-89.127 -proposed tracker | linux (Ubuntu) | Undecided | Invalid | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | linux (Ubuntu Precise) | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow prepare-package-lbm | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1478843 | linux: 3.2.0-89.127 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released |
Bug #1479369: linux-ti-omap4: 3.2.0-1469.90 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | linux-ti-omap4 (Ubuntu Precise) | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Fix Released | ||
1479369 | linux-ti-omap4: 3.2.0-1469.90 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released |
Bug #1479370: linux-armadaxp: 3.2.0-1655.76 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | linux-armadaxp (Ubuntu) | Medium | Invalid | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | linux-armadaxp (Ubuntu Precise) | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Invalid | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1479370 | linux-armadaxp: 3.2.0-1655.76 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.