VYPR
Medium severity4.0NVD Advisory· Published Feb 8, 2016· Updated Jun 17, 2026

CVE-2015-8575

CVE-2015-8575

Description

The sco_sock_bind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

100

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.