Launchpad.net

CVE 2015-3291

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform does not properly determine when nested NMI processing is occurring, which allows local users to cause a denial of service (skipped NMI) by modifying the rsp register, issuing a syscall instruction, and triggering an NMI.

Related bugs and status

CVE-2015-3291 (Candidate) is related to these bugs:

Bug #1470091: update for V3 kernel bits and improved multiple fan slice support

		In	Importance	Status
1470091	update for V3 kernel bits and improved multiple fan slice support	ubuntu-fan (Ubuntu)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	iproute2 (Ubuntu)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux (Ubuntu)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	iproute2 (Ubuntu Wily)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux (Ubuntu Wily)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	ubuntu-fan (Ubuntu Wily)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	iproute2 (Ubuntu Vivid)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux (Ubuntu Vivid)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	ubuntu-fan (Ubuntu Vivid)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	iproute2 (Ubuntu Trusty)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux (Ubuntu Trusty)	High	New
1470091	update for V3 kernel bits and improved multiple fan slice support	ubuntu-fan (Ubuntu Trusty)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux-lts-vivid (Ubuntu Trusty)	High	Fix Released
1470091	update for V3 kernel bits and improved multiple fan slice support	linux-lts-utopic (Ubuntu Trusty)	High	New

Bug #1477250: linux: 3.19.0-24.25 -proposed tracker

		In	Importance	Status
1477250	linux: 3.19.0-24.25 -proposed tracker	linux (Ubuntu)	Undecided	Invalid
1477250	linux: 3.19.0-24.25 -proposed tracker	linux (Ubuntu Vivid)	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow certification-testing	Medium	Invalid
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow automated-testing	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow prepare-package	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow prepare-package-meta	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow prepare-package-signed	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow promote-to-proposed	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow promote-to-security	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow promote-to-updates	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow regression-testing	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow security-signoff	Medium	Fix Released
1477250	linux: 3.19.0-24.25 -proposed tracker	Kernel SRU Workflow verification-testing	Medium	Fix Released

Bug #1478819: CVE-2015-3291

		In	Importance	Status
1478819	CVE-2015-3291	linux (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-fsl-imx51 (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-mvl-dove (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-backport-maverick (Ubuntu)	Undecided	New
1478819	CVE-2015-3291	linux-lts-backport-natty (Ubuntu)	Undecided	New
1478819	CVE-2015-3291	linux-ti-omap4 (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-ec2 (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-ec2 (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-fsl-imx51 (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-backport-maverick (Ubuntu Wily)	Undecided	New
1478819	CVE-2015-3291	linux-lts-backport-natty (Ubuntu Wily)	Undecided	New
1478819	CVE-2015-3291	linux-mvl-dove (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-ti-omap4 (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux (Ubuntu Vivid)	Low	Fix Released
1478819	CVE-2015-3291	linux-ec2 (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-fsl-imx51 (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-backport-maverick (Ubuntu Vivid)	Undecided	New
1478819	CVE-2015-3291	linux-lts-backport-natty (Ubuntu Vivid)	Undecided	New
1478819	CVE-2015-3291	linux-mvl-dove (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-ti-omap4 (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux (Ubuntu Trusty)	Low	Fix Released
1478819	CVE-2015-3291	linux-ec2 (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-fsl-imx51 (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-backport-maverick (Ubuntu Trusty)	Undecided	New
1478819	CVE-2015-3291	linux-lts-backport-natty (Ubuntu Trusty)	Undecided	New
1478819	CVE-2015-3291	linux-mvl-dove (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-ti-omap4 (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-ec2 (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-fsl-imx51 (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-backport-maverick (Ubuntu Precise)	Undecided	Won't Fix
1478819	CVE-2015-3291	linux-lts-backport-natty (Ubuntu Precise)	Undecided	Won't Fix
1478819	CVE-2015-3291	linux-mvl-dove (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-ti-omap4 (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-trusty (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-trusty (Ubuntu Precise)	Low	Fix Released
1478819	CVE-2015-3291	linux-lts-trusty (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-trusty (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-trusty (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-armadaxp (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-armadaxp (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-armadaxp (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-armadaxp (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-armadaxp (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-goldfish (Ubuntu)	Low	New
1478819	CVE-2015-3291	linux-goldfish (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-goldfish (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-goldfish (Ubuntu Vivid)	Low	Won't Fix
1478819	CVE-2015-3291	linux-goldfish (Ubuntu Wily)	Low	New
1478819	CVE-2015-3291	linux-lts-saucy (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-saucy (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-saucy (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-saucy (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-saucy (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-quantal (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-quantal (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-quantal (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-quantal (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-quantal (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-flo (Ubuntu)	Low	New
1478819	CVE-2015-3291	linux-flo (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-flo (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-flo (Ubuntu Vivid)	Low	New
1478819	CVE-2015-3291	linux-flo (Ubuntu Wily)	Low	New
1478819	CVE-2015-3291	linux-lts-vivid (Ubuntu)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-vivid (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-vivid (Ubuntu Trusty)	Low	Fix Released
1478819	CVE-2015-3291	linux-lts-vivid (Ubuntu Vivid)	Low	Invalid
1478819	CVE-2015-3291	linux-lts-vivid (Ubuntu Wily)	Low	Invalid
1478819	CVE-2015-3291	linux-mako (Ubuntu)	Low	New
1478819	CVE-2015-3291	linux-mako (Ubuntu Precise)	Low	Invalid
1478819	CVE-2015-3291	linux-mako (Ubuntu Trusty)	Low	Invalid
1478819	CVE-2015-3291	linux-mako (Ubuntu Vivid)	Low	New
1478819	CVE-2015-3291	linux-mako (Ubuntu Wily)	Low	New

Bug #1479093: Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98

		In	Importance	Status
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux (Ubuntu)	Medium	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-utopic (Ubuntu)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-vivid (Ubuntu)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux (Ubuntu Trusty)	High	Fix Released
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-utopic (Ubuntu Trusty)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-vivid (Ubuntu Trusty)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux (Ubuntu Wily)	Medium	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-utopic (Ubuntu Wily)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-vivid (Ubuntu Wily)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux (Ubuntu Vivid)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-utopic (Ubuntu Vivid)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-vivid (Ubuntu Vivid)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-trusty (Ubuntu)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-trusty (Ubuntu Trusty)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-trusty (Ubuntu Vivid)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-trusty (Ubuntu Wily)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux (Ubuntu Precise)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-trusty (Ubuntu Precise)	Undecided	Fix Released
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-utopic (Ubuntu Precise)	Undecided	Invalid
1479093	Segfault in ld-2.19.so while starting Steam after upgrade to 3.13.0-59.98	linux-lts-vivid (Ubuntu Precise)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2015-3291

Related bugs and status

Related bugs

References