PT-2017-7224 · Red Hat+1 · Red Hat Enterprise Mrg 2+4

Wade Mealing

Publicado

2015-11-19

Atualizado

2023-02-13

CVE-2015-7553

CVSS v2.0

4.7

Média

Vetor

AV:L/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Linux 7 kernel-rt Red Hat Enterprise MRG 2

Description A race condition exists in the kernel when the nfnetlink log module is loaded, allowing local users to cause a denial of service by creating netlink sockets.

Recommendations For Red Hat Enterprise Linux 7, consider disabling the nfnetlink log module as a temporary workaround until a patch is available. For kernel-rt, restrict access to the netlink sockets to minimize the risk of exploitation. For Red Hat Enterprise MRG 2, avoid using the nfnetlink log module in the kernel until the issue is resolved.

Exploit

Correção

DoS

Race Condition

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362

Identificadores relacionados

CESA-2015_2152

CVE-2015-7553

RHSA-2015:2152

RHSA-2015_2152

Produtos afetados

Centos

Red Hat

Red Hat Enterprise Linux 7

Red Hat Enterprise Mrg 2

Kernel-Rt

PT-2017-7224 · Red Hat+1 · Red Hat Enterprise Mrg 2+4

CVE-2015-7553

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 56