CVE-2015-5257

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2015-5257
drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted USB device. NOTE: this ID was incorrectly used for an Apache Cordova issue that has the correct ID of CVE-2015-8320.

4.9 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbb4be652d374f64661137756b8f357a1827d6a4
http://www.debian.org/security/2015/dsa-3372
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.4
http://www.openwall.com/lists/oss-security/2015/09/23/1
http://www.securityfocus.com/bid/76834
http://www.ubuntu.com/usn/USN-2792-1
http://www.ubuntu.com/usn/USN-2794-1
http://www.ubuntu.com/usn/USN-2795-1
http://www.ubuntu.com/usn/USN-2798-1
http://www.ubuntu.com/usn/USN-2799-1
https://bugzilla.redhat.com/show_bug.cgi?id=1265607 Vendor Advisory
https://github.com/torvalds/linux/commit/cbb4be652d374f64661137756b8f357a1827d6a4 Vendor Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbb4be652d374f64661137756b8f357a1827d6a4
http://www.debian.org/security/2015/dsa-3372
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.4
http://www.openwall.com/lists/oss-security/2015/09/23/1
http://www.securityfocus.com/bid/76834
http://www.ubuntu.com/usn/USN-2792-1
http://www.ubuntu.com/usn/USN-2794-1
http://www.ubuntu.com/usn/USN-2795-1
http://www.ubuntu.com/usn/USN-2798-1
http://www.ubuntu.com/usn/USN-2799-1
https://bugzilla.redhat.com/show_bug.cgi?id=1265607 Vendor Advisory
https://github.com/torvalds/linux/commit/cbb4be652d374f64661137756b8f357a1827d6a4 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
History

21 Nov 2024, 02:32

Type Values Removed Values Added
References () http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbb4be652d374f64661137756b8f357a1827d6a4 - () http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbb4be652d374f64661137756b8f357a1827d6a4 -
References () http://www.debian.org/security/2015/dsa-3372 - () http://www.debian.org/security/2015/dsa-3372 -
References () http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.4 - () http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.4 -
References () http://www.openwall.com/lists/oss-security/2015/09/23/1 - () http://www.openwall.com/lists/oss-security/2015/09/23/1 -
References () http://www.securityfocus.com/bid/76834 - () http://www.securityfocus.com/bid/76834 -
References () http://www.ubuntu.com/usn/USN-2792-1 - () http://www.ubuntu.com/usn/USN-2792-1 -
References () http://www.ubuntu.com/usn/USN-2794-1 - () http://www.ubuntu.com/usn/USN-2794-1 -
References () http://www.ubuntu.com/usn/USN-2795-1 - () http://www.ubuntu.com/usn/USN-2795-1 -
References () http://www.ubuntu.com/usn/USN-2798-1 - () http://www.ubuntu.com/usn/USN-2798-1 -
References () http://www.ubuntu.com/usn/USN-2799-1 - () http://www.ubuntu.com/usn/USN-2799-1 -
References () https://bugzilla.redhat.com/show_bug.cgi?id=1265607 - Vendor Advisory () https://bugzilla.redhat.com/show_bug.cgi?id=1265607 - Vendor Advisory
References () https://github.com/torvalds/linux/commit/cbb4be652d374f64661137756b8f357a1827d6a4 - Vendor Advisory () https://github.com/torvalds/linux/commit/cbb4be652d374f64661137756b8f357a1827d6a4 - Vendor Advisory

07 Nov 2023, 02:26

Type Values Removed Values Added
Summary drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted USB device. NOTE: this ID was incorrectly used for an Apache Cordova issue that has the correct ID of CVE-2015-8320. drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted USB device. NOTE: this ID was incorrectly used for an Apache Cordova issue that has the correct ID of CVE-2015-8320.
Information

Published : 2015-11-16 11:59

Updated : 2024-11-21 02:32

NVD link : CVE-2015-5257

Mitre link : CVE-2015-5257

CVE.ORG link : CVE-2015-5257

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024