CVE-2015-2666

Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel before 4.0 allows context-dependent attackers to gain privileges by constructing a crafted microcode header and leveraging root privileges for write access to the initrd.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4	Broken Link
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153329.html	Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1534.html	Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/03/20/18	Mailing List
http://www.securitytracker.com/id/1032414	Third Party Advisory VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1204722	Issue Tracking
https://github.com/torvalds/linux/commit/f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

Configuration 2 (hide)

cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*

History

14 Mar 2024, 19:59

Type	Values Removed	Values Added
First Time		Fedoraproject Fedoraproject fedora
CPE		cpe:2.3:o:fedoraproject:fedora:21:::::::*
References	~~() http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4 -~~	() http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4 - Broken Link
References	~~() http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153329.html -~~	() http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153329.html - Third Party Advisory
References	~~() http://rhn.redhat.com/errata/RHSA-2015-1534.html -~~	() http://rhn.redhat.com/errata/RHSA-2015-1534.html - Third Party Advisory
References	~~() http://www.openwall.com/lists/oss-security/2015/03/20/18 -~~	() http://www.openwall.com/lists/oss-security/2015/03/20/18 - Mailing List
References	~~() http://www.securitytracker.com/id/1032414 -~~	() http://www.securitytracker.com/id/1032414 - Third Party Advisory, VDB Entry
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=1204722 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=1204722 - Issue Tracking
References	~~() https://github.com/torvalds/linux/commit/f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4 -~~	() https://github.com/torvalds/linux/commit/f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4 - Patch

Information

Published : 2015-05-27 10:59

Updated : 2024-03-14 19:59

NVD link : CVE-2015-2666

Mitre link : CVE-2015-2666

CVE.ORG link : CVE-2015-2666

JSON object : View

Products Affected

fedoraproject

fedora

linux

linux_kernel

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

6.9 /10