High severity7.0NVD Advisory· Published Dec 28, 2015· Updated May 6, 2026

CVE-2015-8543

Description

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer dereference and system crash) or possibly gain privileges by leveraging CLONE_NEWUSER support to execute a crafted SOCK_RAW application.

Affected products

100

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <3.2.75
osv-coords99 versions
pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweed pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Desktop%2012 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-ec2&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Desktop%2012 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Desktop%2012 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-trace&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1 pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-xen&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_3&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012 pkg:rpm/suse/kgraft-patch-SLE12_Update_10&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012 pkg:rpm/suse/lttng-modules&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1 pkg:rpm/suse/lttng-modules&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
< 4.5.0-1.1+ 98 more
- (no CPE)range: < 4.5.0-1.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.2
- (no CPE)range: < 3.12.51-52.34.3
- (no CPE)range: < 3.12.53-60.30.2
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.2
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101.rt130-51.1
- (no CPE)range: < 3.0.101.rt130-51.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101.rt130-51.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101.rt130-51.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.7.40.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-71.1
- (no CPE)range: < 3.12.51-52.34.1
- (no CPE)range: < 3.12.53-60.30.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 3.0.101-0.47.79.1
- (no CPE)range: < 1-2.1
- (no CPE)range: < 1-2.1
- (no CPE)range: < 2.7.0-3.1
- (no CPE)range: < 2.7.0-3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/nvdVendor Advisory
lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-0855.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-2574.htmlnvdThird Party Advisory
rhn.redhat.com/errata/RHSA-2016-2584.htmlnvdThird Party Advisory
www.debian.org/security/2015/dsa-3426nvdThird Party Advisory
www.debian.org/security/2016/dsa-3434nvdThird Party Advisory
www.openwall.com/lists/oss-security/2015/12/09/5nvdMailing ListThird Party Advisory
www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.htmlnvdThird Party Advisory
www.securityfocus.com/bid/79698nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1034892nvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-2886-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2888-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2890-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2890-2nvdThird Party Advisory
www.ubuntu.com/usn/USN-2890-3nvdThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
github.com/torvalds/linux/commit/79462ad02e861803b3840cc782248c7359451cd9nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000