ALT-PU-2015-2067-1

Обновление пакета kernel-image-un-def в ветке t7

Версия4.1.13-alt0.M70P.1

Задание#154388

Опубликовано2015-12-05

Макс. серьёзностьHIGH

Серьёзность:

Закрытые проблемы (2)

HIGH7.8

The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated by JavaScript code that creates many CANVAS elements for rendering by Chrome or Firefox.

Опубликовано: 2015-10-16Изменено: 2025-04-12

CVSS 2.0ВЫСОКАЯ 7.8

CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:C

Ссылки

MEDIUM6.1

The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets.

Опубликовано: 2015-10-19Изменено: 2025-04-12

CVSS 2.0СРЕДНЯЯ 6.1

CVSS:2.0/AV:A/AC:L/Au:N/C:N/I:N/A:C

Ссылки

Закрытые ошибки (1)

Ошибка #31352

зависание на ядре 4.1.10-std-def