Linux kernel OZWPAN driver DoS Vulnerability (CVE-2015-4003)

Linux kernel OZWPAN driver DoS Vulnerability (CVE-2015-4003)
Linux kernel OZWPAN driver DoS Vulnerability (CVE-2015-4003)

Release date:
Updated on:

Affected Systems:

Linux kernel < 4.0.5

Description:

CVE (CAN) ID: CVE-2015-4003

Linux Kernel is the Kernel of the Linux operating system.

In versions earlier than Linux kernel 4.0.5, The OZWPAN driver drivers/staging/ozwpan/ozusbsvc1.c function oz_usb_handle_ep_data has a security vulnerability. Remote attackers construct data packets, this vulnerability can cause DoS (except for zero errors and system crashes ).

<* Source: anonymous
*>

Suggestion:

Vendor patch:

Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Https://github.com/torvalds/linux/commit/04bf464a5dfd9ade0dda918e44366c2c61fce80b
Http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit? Id = 04bf464a5dfd9ade0dda918e44108c2c61fce80b
Http://openwall.com/lists/oss-security/2015/06/05/7

How to install Kernel 4.0.2 on CentOS 7

How to install Linux Kernel 4.0 on CentOS 7

How to install Linux kernel 4.0 on Ubuntu/CentOS?

How to install Linux kernel 13.10 On Ubuntu 3.12

How to install the 3.16.7 CKT2 kernel in Ubuntu 14.10, Ubuntu 14.04, and its derivative versions

Linux Kernel: click here
Linux Kernel: click here

This article permanently updates the link address: