CVE-2015-0275 — Kernel vulnerability

CWE-1714 documents8 sources

Severity

4.9MEDIUMNVD

EPSS

0.1%

top 73.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Oracle Linux

Timeline

PublishedOct 19

Latest updateMay 13

Description

The ext4_zero_range function in fs/ext4/extents.c in the Linux kernel before 4.1 allows local users to cause a denial of service (BUG) via a crafted fallocate zero-range request.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages3 packages

▶Debianlinux/linux_kernel< 3.16.7-ckt9-1+3

▶NVDlinux/linux_kernel4.0.5

▶NVDoracle/linux7

Patches

Patch: git.kernel.org ↗Patch: www.openwall.com ↗Patch: www.spinics.net ↗

🔴Vulnerability Details

GHSA

GHSA-79v7-mfgp-365f: The ext4_zero_range function in fs/ext4/extents↗2022-05-13

▶

OSV

CVE-2015-0275: The ext4_zero_range function in fs/ext4/extents↗2015-10-19

▶

CVEList

CVE-2015-0275: The ext4_zero_range function in fs/ext4/extents↗2015-10-19

▶

OSV

linux-lts-vivid vulnerabilities↗2015-06-10

▶

OSV

linux-lts-utopic vulnerabilities↗2015-06-10

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2015-06-10

▶

Ubuntu

Linux kernel (Utopic HWE) vulnerabilities↗2015-06-10

▶

Ubuntu

Linux kernel (Vivid HWE) vulnerabilities↗2015-06-10

▶

Ubuntu

Linux kernel vulnerabilities↗2015-06-10

▶

Red Hat

kernel: fs: ext4: fallocate zero range page size > block size BUG()↗2015-02-18

▶

💬Community

Bugzilla

CVE-2015-0275 kernel: fs: ext4: fallocate zero range page size > block size BUG() [fedora-all]↗2015-02-23

▶

Bugzilla

CVE-2015-0275 kernel: fs: ext4: fallocate zero range page size > block size BUG()↗2015-02-18

▶