CVE-2015-6526
Linux Kernel < 4.0.1 - Denial of Service via Deep 64-bit Userspace Backtrace
Title source: llmDescription
The perf_callchain_user_64 function in arch/powerpc/perf/callchain.c in the Linux kernel before 4.0.2 on ppc64 platforms allows local users to cause a denial of service (infinite loop) via a deep 64-bit userspace backtrace.
References (10)
Core 10
Core References
Patch x_refsource_confirm
https://github.com/torvalds/linux/commit/9a5cbce421a283e6aea3c4007f141735bf9da8c3
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2760-1
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1218454
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2759-1
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/08/18/4
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033728
Patch x_refsource_confirm
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9a5cbce421a283e6aea3c4007f141735bf9da8c3
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76401
Vendor Advisory x_refsource_confirm
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.0.2
Scores
EPSS
0.0039
EPSS Percentile
31.1%
Details
CWE
CWE-399
Status
published
Products (1)
linux/linux_kernel
< 4.0.1
Published
Aug 31, 2015
Tracked Since
Feb 18, 2026