CVE-2015-0272 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:N/I:N/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 77%

Affected Products (NVD)

Vendor	Product	Version
gnome	networkmanager	𝑥 < 1.2.0
canonical	ubuntu_linux	12.04

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

network-manager

bookworm	1.42.4-1 fixed
bullseye	1.30.6-1+deb11u1 fixed
jessie	no-dsa
sid	1.50.0-1 fixed
squeeze	not-affected
trixie	1.50.0-1 fixed
wheezy	not-affected

Ubuntu Releases

Ubuntu Product

Codename

linux

precise	Fixed 3.2.0-93.133 released
trusty	Fixed 3.13.0-66.108 released
vivid	Fixed 3.19.0-31.36 released
wily	not-affected
xenial	not-affected
yakkety	not-affected
zesty	not-affected

linux-armadaxp

precise	Fixed 3.2.0-1659.83 released
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-aws

precise	dne
trusty	not-affected
xenial	not-affected
yakkety	dne
zesty	dne

linux-ec2

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-flo

precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	ignored
yakkety	ignored
zesty	dne

linux-fsl-imx51

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-gke

precise	dne
trusty	dne
xenial	not-affected
yakkety	dne
zesty	dne

linux-goldfish

precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	ignored
yakkety	ignored
zesty	ignored

linux-grouper

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-hwe

precise	dne
trusty	dne
xenial	not-affected
yakkety	dne
zesty	dne

linux-hwe-edge

precise	dne
trusty	dne
xenial	not-affected
yakkety	dne
zesty	dne

linux-linaro-omap

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-linaro-shared

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-linaro-vexpress

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-quantal

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-raring

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-saucy

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-trusty

precise	Fixed 3.13.0-66.108~precise1 released
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-utopic

precise	dne
trusty	Fixed 3.16.0-52.71~14.04.1 released
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-vivid

precise	dne
trusty	Fixed 3.19.0-31.36~14.04.1 released
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-wily

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-lts-xenial

precise	dne
trusty	not-affected
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-maguro

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-mako

precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	ignored
yakkety	ignored
zesty	dne

linux-manta

precise	dne
trusty	dne
vivid	ignored
wily	ignored
xenial	dne
yakkety	dne
zesty	dne

linux-mvl-dove

precise	dne
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-qcm-msm

precise	ignored
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

linux-raspi2

precise	dne
trusty	dne
vivid	dne
wily	not-affected
xenial	not-affected
yakkety	not-affected
zesty	not-affected

linux-snapdragon

precise	dne
trusty	dne
wily	dne
xenial	not-affected
yakkety	not-affected
zesty	not-affected

linux-ti-omap4

precise	Fixed 3.2.0-1473.95 released
trusty	dne
vivid	dne
wily	dne
xenial	dne
yakkety	dne
zesty	dne

network-manager

precise	not-affected
trusty	dne
vivid	not-affected
wily	not-affected
xenial	not-affected
yakkety	not-affected
zesty	not-affected

References

http://cgit.freedesktop.org/NetworkManager/NetworkManager/commit/?id=d5fc88e573fa58b93034b04d35a2454f5d28cad9

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

http://www.securityfocus.com/bid/76814

http://www.ubuntu.com/usn/USN-2792-1

https://bugzilla.redhat.com/show_bug.cgi?id=1192132