Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-5307
HistoryNov 10, 2015 - 12:00 a.m.

CVE-2015-5307

2015-11-1000:00:00
ubuntu.com
ubuntu.com
28

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

31.8%

JSON

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through
4.6.x, allows guest OS users to cause a denial of service (host OS panic or
hang) by triggering many #AC (aka Alignment Check) exceptions, related to
svm.c and vmx.c.

Bugs

Notes

Author Note
jdstrand android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
sbeattie affects x86 kernels only fixed in upstream 54a20552e1eae07aa240fa370a0293e006b5faed ; however, it hadn’t made it to linus’ tree before we published kernels for it, so manually recording everything.
OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-94.134UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-68.111UNKNOWN
ubuntu15.04noarchlinux< 3.19.0-33.38UNKNOWN
ubuntu15.10noarchlinux< 4.2.0-18.22UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-68.111~precise1UNKNOWN
ubuntu14.04noarchlinux-lts-utopic< 3.16.0-53.72~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-vivid< 3.19.0-33.38~14.04.1UNKNOWN
ubuntu14.04noarchlinux-lts-wily< 4.2.0-18.22~14.04.1UNKNOWN
ubuntu14.04noarchvirtualbox< 4.3.36-dfsg-1+deb8u1ubuntu1.14.04.1UNKNOWN
ubuntu15.04noarchvirtualbox< 4.3.36-dfsg-1+deb8u1ubuntu1.15.04.1UNKNOWN
Rows per page:
1-10 of 181

Related

openvas 52
nessus 67
ubuntu 8
cvelist 1
debiancve 1
cve 1
nvd 1
prion 1
fedora 6
freebsd 1
oraclelinux 5
redhat 7
centos 2
xen 1
f5 2
mageia 7
debian 5
osv 3
kaspersky 1
suse 13
oracle 1
openvas
openvas
Ubuntu: Security Advisory (USN-2802-1)
2015-11-10 00:00:00
Ubuntu: Security Advisory (USN-2800-1)
2015-11-10 00:00:00
Ubuntu: Security Advisory (USN-2804-1)
2015-11-10 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Linux kernel vulnerability (USN-2801-1)
2015-11-10 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerability (USN-2806-1)
2015-11-10 00:00:00
Ubuntu 12.04 LTS : linux vulnerability (USN-2800-1)
2015-11-10 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2015-11-10 00:00:00
Linux kernel (Vivid HWE) vulnerability
2015-11-10 00:00:00
Linux kernel (Utopic HWE) vulnerability
2015-11-10 00:00:00
cvelist
cvelist
CVE-2015-5307
2015-11-16 11:00:00
debiancve
debiancve
CVE-2015-5307
2015-11-16 11:59:05
cve
cve
CVE-2015-5307
2015-11-16 11:59:05
nvd
nvd
CVE-2015-5307
2015-11-16 11:59:05
prion
prion
Design/Logic Flaw
2015-11-16 11:59:00
fedora
fedora
[SECURITY] Fedora 22 Update: xen-4.5.2-2.fc22
2015-11-21 16:55:05
[SECURITY] Fedora 21 Update: xen-4.4.3-8.fc21
2015-11-20 23:26:59
[SECURITY] Fedora 23 Update: xen-4.5.2-2.fc23
2015-11-23 00:30:31
freebsd
freebsd
xen-kernel -- CPU lockup during exception delivery
2015-11-10 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-12-10 00:00:00
kernel security and bug fix update
2015-12-08 00:00:00
Unbreakable Enterprise kernel security update
2016-01-08 00:00:00
redhat
redhat
(RHSA-2015:2552) Important: kernel security and bug fix update
2015-12-08 10:11:52
(RHSA-2016:0004) Important: kernel security update
2016-01-07 00:00:00
(RHSA-2016:0046) Important: kernel security update
2016-01-19 00:00:00
centos
centos
kernel, perf, python security update
2015-12-09 19:18:47
kernel, perf, python security update
2015-12-16 00:07:51
xen
xen
x86: CPU lockup during exception delivery
2015-11-10 00:01:00
f5
f5
K31026324 : Linux kernel vulnerabilities CVE-2015-2925, CVE-2015-5307, and CVE-2015-8104
2016-01-13 00:00:00
SOL31026324 - Linux kernel vulnerabilities CVE-2015-2925, CVE-2015-5307, and CVE-2015-8104
2016-01-13 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-11-20 01:08:19
Updated kernel-linus packages fix security vulnerabilities
2016-01-14 04:44:39
Updated kernel-linus packages fix security vulnerabilities
2016-06-22 22:08:04
debian
debian
[SECURITY] [DSA 3454-1] virtualbox security update
2016-01-26 23:24:54
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
osv
osv
linux - security update
2015-11-10 00:00:00
xen - security update
2016-05-17 00:00:00
xen-4.7.0_12-1.3 on GA media
2024-06-15 00:00:00
kaspersky
kaspersky
KLA10744 Multiple vulnerabilities in Oracle VM VirtualBox
2016-02-21 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2015-11-26 13:10:56
Security update for the Linux Kernel (important)
2016-02-05 21:12:31
Security update for the Linux Kernel (important)
2015-12-04 14:10:52
oracle
oracle
Oracle Critical Patch Update - January 2016
2016-01-19 00:00:00

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

31.8%

JSON
Related for UB:CVE-2015-5307
openvas52nessus67ubuntu8cvelist1debiancve1cve1nvd1prion1fedora6freebsd1oraclelinux5redhat7centos2xen1f52mageia7debian5osv3kaspersky1suse13oracle1