Vulnerabilities

CVE-2015-5156

by Fred · 19/10/2015

The virtnet_probe function in drivers/net/virtio_net.c in the Linux kernel before 4.2 attempts to support a FRAGLIST feature without proper memory allocation, which allows guest OS users to cause a denial of service (buffer overflow and memory corruption) via a crafted sequence of fragmented packets.

Date published : 2015-10-19

http://www.securityfocus.com/bid/76230

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=48900cb6af4282fa0fb6ff4d72a81aa3dadb5c39

Similar

Tags: Cybersecurity Alert