CVE-2015-4036

Severity CVSS v4.0:

Pending analysis

Type:

CWE-119 Buffer Errors

Publication date:

31/08/2015

Last modified:

12/04/2025

Description

Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call. NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.

Impact

Vector 2.0

AV:L/AC:L/Au:N/C:C/I:C/A:C CVSS v2.0 Severity and Metrics:

Base Score: 7.20 HIGH
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Attack Vector (AV): Local
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): Complete
Integrity (I): Complete
Availability (A): Complete

Base Score 2.0

7.20

Severity 2.0

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:o:linux:linux_kernel::::::::	3.6 (excluding)	3.10.90 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	3.11 (including)	3.12.44 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	3.13 (including)	3.14.57 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	3.15 (including)	3.16.35 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	3.17 (including)	3.18.25 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	3.19 (including)	4.0 (excluding)
cpe:2.3:o:linux:linux_kernel:3.6:-::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc2::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc3::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc4::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc5::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc6::::::
cpe:2.3:o:linux:linux_kernel:3.6:rc7::::::

To consult the complete list of CPE names with products and versions, see this page

CVE-2015-4036

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools