CVE-2015-8543

HIGH

Linux Kernel < 3.2.75 - Denial of Service via Unvalidated Protocol Identifiers

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-8543. PoCs published by bittorrent3389.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2015-8543, a NULL pointer dereference vulnerability in the Linux kernel. The exploit achieves local privilege escalation (LPE) by manipulating kernel symbols and triggering the vulnerability via a crafted socket operation.

Description

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer dereference and system crash) or possibly gain privileges by leveraging CLONE_NEWUSER support to execute a crafted SOCK_RAW application.

Exploits (1)

nomisec WORKING POC 2 stars
by bittorrent3389 · poc
https://github.com/bittorrent3389/CVE-2015-8543_for_SLE12SP1

This repository contains a functional exploit for CVE-2015-8543, a NULL pointer dereference vulnerability in the Linux kernel. The exploit achieves local privilege escalation (LPE) by manipulating kernel symbols and triggering the vulnerability via a crafted socket operation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Linux kernel (SUSE Linux Enterprise Server 12 SP1)
No auth needed
Prerequisites: Access to a vulnerable system · Ability to disable kernel security protections (mmap_min_addr, kptr_restrict)
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (20)

Core 20
Core References
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0855.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034892
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2886-1
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2890-3
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-2584.html
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-2574.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/79698
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2890-2
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2015/dsa-3426
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/12/09/5
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2890-1
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1290475
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3434
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2888-1
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html

Scores

CVSS v3 7.0
EPSS 0.0123
EPSS Percentile 65.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
linux/linux_kernel < 3.2.75
Published Dec 28, 2015
Tracked Since Feb 18, 2026