CVE-2015-1142857 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 72%

Affected Products (NVD)

Vendor	Product	Version
intel	x710_firmware	-
intel	82599_firmware	-
intel	x540_firmware	-
intel	i350_firmware	-
intel	82576_firmware	-
linux	linux_kernel_ixgbe	-
linux	linux_kernel_i40e\/i40evf	-
dpdk	dpdk	-

𝑥

= Vulnerable software versions

openSUSE / SLES Releases

openSUSE Product

Release

kernel-default

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-default-base

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-default-man

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-ec2

suse enterprise sap 12	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP3	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP4	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP5	3.12.74-60.64.82.1 fixed
suse enterprise server 12	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP3	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP4	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP5	3.12.74-60.64.82.1 fixed

kernel-ec2-extra

suse enterprise sap 12	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP3	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP4	3.12.74-60.64.82.1 fixed
suse enterprise sap 12 SP5	3.12.74-60.64.82.1 fixed
suse enterprise server 12	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP3	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP4	3.12.74-60.64.82.1 fixed
suse enterprise server 12 SP5	3.12.74-60.64.82.1 fixed

kernel-firmware-20140807git

suse enterprise server 12

5.8.1

fixed

kernel-firmware-20160516git

suse enterprise server 12 SP1

10.13.1

fixed

kernel-firmware-20170530

suse enterprise sap 12 SP2	21.19.1 fixed
suse enterprise sap 12 SP3	21.19.1 fixed
suse enterprise server 12 SP2	21.19.1 fixed
suse enterprise server 12 SP3	21.19.1 fixed

kernel-macros

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-source

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-syms

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-xen

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kernel-xen-base

suse enterprise server 12	3.12.61-52.119.1 fixed
suse enterprise server 12 SP1	3.12.74-60.64.82.1 fixed

kgraft-patch-3_12_61-52_119-default-1

suse enterprise server 12

1.7.1

fixed

kgraft-patch-3_12_61-52_119-xen-1

suse enterprise server 12

1.7.1

fixed

kgraft-patch-3_12_74-60_64_82-default-1

suse enterprise server 12 SP1

2.9.1

fixed

kgraft-patch-3_12_74-60_64_82-xen-1

suse enterprise server 12 SP1

2.9.1

fixed

ucode-amd-20140807git

suse enterprise server 12

5.8.1

fixed

ucode-amd-20160516git

suse enterprise server 12 SP1

10.13.1

fixed

ucode-amd-20170530

suse enterprise sap 12 SP2	21.19.1 fixed
suse enterprise sap 12 SP3	21.19.1 fixed
suse enterprise server 12 SP2	21.19.1 fixed
suse enterprise server 12 SP3	21.19.1 fixed

Common Weakness Enumeration

CWE-254 -

References

http://seclists.org/oss-sec/2015/q4/425

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00046&languageid=en-fr

https://www.usenix.org/system/files/conference/usenixsecurity15/sec15-paper-smolyar.pdf

http://seclists.org/oss-sec/2015/q4/425

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00046&languageid=en-fr

https://www.usenix.org/system/files/conference/usenixsecurity15/sec15-paper-smolyar.pdf