CVE-2015-0777

drivers/xen/usbback/usbback.c in linux-2.6.18-xen-3.4.0 (aka the Xen 3.4.x support patches for the Linux kernel 2.6.18), as used in the Linux kernel 2.6.x and 3.x in SUSE Linux distributions, allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
microfocusCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 32%
VendorProductVersion
xenxen
3.4.0
xenxen
3.4.1
xenxen
3.4.2
xenxen
3.4.3
xenxen
3.4.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
sid
6.11.5-1
fixed
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
utopic
not-affected
trusty
not-affected
precise
not-affected
lucid
not-affected
linux-2.6
utopic
dne
trusty
dne
precise
dne
lucid
dne
linux-armadaxp
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
linux-ec2
utopic
dne
trusty
dne
precise
dne
lucid
not-affected
linux-flo
utopic
not-affected
trusty
dne
precise
dne
lucid
dne
linux-fsl-imx51
utopic
dne
trusty
dne
precise
dne
lucid
ignored
linux-goldfish
utopic
not-affected
trusty
dne
precise
dne
lucid
dne
linux-grouper
utopic
not-affected
trusty
dne
precise
dne
lucid
dne
linux-linaro-omap
utopic
dne
trusty
dne
precise
ignored
lucid
dne
linux-linaro-shared
utopic
dne
trusty
dne
precise
ignored
lucid
dne
linux-linaro-vexpress
utopic
dne
trusty
dne
precise
ignored
lucid
dne
linux-lts-quantal
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
linux-lts-raring
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
linux-lts-saucy
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
linux-lts-trusty
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
linux-lts-utopic
utopic
dne
trusty
dne
precise
dne
lucid
dne
linux-maguro
utopic
dne
trusty
dne
precise
dne
lucid
dne
linux-mako
utopic
not-affected
trusty
dne
precise
dne
lucid
dne
linux-manta
utopic
not-affected
trusty
dne
precise
dne
lucid
dne
linux-mvl-dove
utopic
dne
trusty
dne
precise
dne
lucid
ignored
linux-qcm-msm
utopic
dne
trusty
dne
precise
ignored
lucid
ignored
linux-ti-omap4
utopic
dne
trusty
dne
precise
not-affected
lucid
dne
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00018.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00021.html
http://www.securityfocus.com/bid/73921
https://bugzilla.novell.com/show_bug.cgi?id=917830
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00018.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00021.html
http://www.securityfocus.com/bid/73921
https://bugzilla.novell.com/show_bug.cgi?id=917830