Linux kernel OZWPAN driver DoS Vulnerability (CVE-2015-4001)
Linux kernel OZWPAN driver DoS Vulnerability (CVE-2015-4001)
Release date:
Updated on:
Affected Systems:
Linux kernel < 4.0.5
Description:
CVE (CAN) ID: CVE-2015-4001
Linux Kernel is the Kernel of the Linux operating system.
In versions earlier than Linux kernel 4.0.5, The OZWPAN driver drivers/staging/ozwpan/ozhcd. the oz_hcd_get_desc_cnf function in c has an integer signature error. Remote attackers can exploit this vulnerability to initiate DoS attacks or execute arbitrary code by constructing data packets.
<* Source: anonymous
*>
Suggestion:
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit? Id = b1bb5b49373b61bf9d2c73a4d30058ba6f069e4c
Https://github.com/torvalds/linux/commit/b1bb5b49373b61bf9d2c73a4d30058ba6f069e4c
How to install Kernel 4.0.2 on CentOS 7
How to install Linux Kernel 4.0 on CentOS 7
How to install Linux kernel 4.0 on Ubuntu/CentOS?
How to install Linux kernel 13.10 On Ubuntu 3.12
How to install the 3.16.7 CKT2 kernel in Ubuntu 14.10, Ubuntu 14.04, and its derivative versions
Linux Kernel: click here
Linux Kernel: click here
This article permanently updates the link address: