CVE-2015-8551

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of service (NULL pointer dereference and host OS crash) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and a crafted sequence of XEN_PCI_OP_* operations, aka "Linux pciback missing sanity checks."

CVSS v3 6.0 MEDIUM
CVSS v2.0 4.7 MEDIUM

6.0^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.5 / Impact : 4.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

4.7^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 3.4 / Impact : 6.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html	Mailing List Third Party Advisory
http://www.debian.org/security/2016/dsa-3434	Third Party Advisory
http://www.securityfocus.com/bid/79546	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1034480	Third Party Advisory VDB Entry
http://xenbits.xen.org/xsa/advisory-157.html	Vendor Advisory
https://security.gentoo.org/glsa/201604-03	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

Configuration 2 (hide)

OR	cpe:2.3:o:debian:debian_linux:7.0:::::::*
	cpe:2.3:o:debian:debian_linux:8.0:::::::*

Configuration 3 (hide)

OR	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1::::::
	cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_real_time_extension:12:sp1::::::
	cpe:2.3:o:suse:linux_enterprise_server:11:-::::::
	cpe:2.3:o:suse:linux_enterprise_server:11:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_server:12:sp1::::::
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4::::::
	cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1::::::
	cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:sp1::::::

History

No history.

Information

Published : 2016-04-13 15:59

Updated : 2023-12-10 11:46

NVD link : CVE-2015-8551

Mitre link : CVE-2015-8551

CVE.ORG link : CVE-2015-8551

JSON object : View

Products Affected

suse

linux_enterprise_real_time_extension
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_workstation_extension
linux_enterprise_software_development_kit

opensuse

opensuse

linux

linux_kernel

debian

debian_linux

CWE

CWE-476

NULL Pointer Dereference

6.0 /10

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

4.7 /10

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

JSON object

Attach tags to CVE-2015-8551

6.0^/10

4.7^/10

Attach tags to `CVE-2015-8551`