JVN/CVE Demo: Nvdinfos

NVD

Id: 28289
Name: CVE-2015-7872
Description: The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands.
Reject
CVSS Version: 2
CVSS Score: 2.1
Severity: Low
CVSS Base Score: 2.1
CVSS Impact Subscore: 2.9
CVSS Exploit Subscore: 3.9
CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Pub Date: 2017-01-19
Published: 2015-11-16
Modified Date: 2016-12-07
Seq: 2015-7872

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
148677	28289	CVE-2015-7872	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ce1fad2740c648a4340f6f6c391a8a83769d2e8c	View
148678	28289	CVE-2015-7872	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61	View
148679	28289	CVE-2015-7872	SUSE-SU-2015:2108	View
148680	28289	CVE-2015-7872	SUSE-SU-2015:2194	View
148681	28289	CVE-2015-7872	SUSE-SU-2015:2292	View
148682	28289	CVE-2015-7872	SUSE-SU-2015:2339	View
148683	28289	CVE-2015-7872	SUSE-SU-2015:2350	View
148684	28289	CVE-2015-7872	SUSE-SU-2016:0335	View
148685	28289	CVE-2015-7872	SUSE-SU-2016:0337	View
148686	28289	CVE-2015-7872	SUSE-SU-2016:0354	View
148687	28289	CVE-2015-7872	SUSE-SU-2016:0380	View
148688	28289	CVE-2015-7872	SUSE-SU-2016:0381	View
148689	28289	CVE-2015-7872	SUSE-SU-2016:0383	View
148690	28289	CVE-2015-7872	SUSE-SU-2016:0384	View
148691	28289	CVE-2015-7872	SUSE-SU-2016:0386	View
148692	28289	CVE-2015-7872	SUSE-SU-2016:0387	View
148693	28289	CVE-2015-7872	SUSE-SU-2016:0434	View
148694	28289	CVE-2015-7872	openSUSE-SU-2016:1008	View
148695	28289	CVE-2015-7872	SUSE-SU-2016:2074	View
148696	28289	CVE-2015-7872	HPSBGN03565	View
148697	28289	CVE-2015-7872	RHSA-2015:2636	View
148698	28289	CVE-2015-7872	RHSA-2016:0185	View
148699	28289	CVE-2015-7872	RHSA-2016:0212	View
148700	28289	CVE-2015-7872	RHSA-2016:0224	View
148701	28289	CVE-2015-7872	DSA-3396	View
148702	28289	CVE-2015-7872	[oss-security] 20151020 Re: CVE request: crash when attempt to garbage collect an uninstantiated keyring - Linux kernel	View
148703	28289	CVE-2015-7872	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html	View
148704	28289	CVE-2015-7872	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html	View
148705	28289	CVE-2015-7872	77544	View
148706	28289	CVE-2015-7872	1034472	View
148707	28289	CVE-2015-7872	USN-2823-1	View
148708	28289	CVE-2015-7872	USN-2824-1	View
148709	28289	CVE-2015-7872	USN-2826-1	View
148710	28289	CVE-2015-7872	USN-2829-1	View
148711	28289	CVE-2015-7872	USN-2829-2	View
148712	28289	CVE-2015-7872	USN-2840-1	View
148713	28289	CVE-2015-7872	USN-2840-2	View
148714	28289	CVE-2015-7872	USN-2843-1	View
148715	28289	CVE-2015-7872	USN-2843-2	View
148716	28289	CVE-2015-7872	USN-2843-3	View
148717	28289	CVE-2015-7872	https://bugzilla.redhat.com/show_bug.cgi?id=1272172	View
148718	28289	CVE-2015-7872	https://bugzilla.redhat.com/show_bug.cgi?id=1272371	View
148719	28289	CVE-2015-7872	https://github.com/torvalds/linux/commit/ce1fad2740c648a4340f6f6c391a8a83769d2e8c	View
148720	28289	CVE-2015-7872	https://github.com/torvalds/linux/commit/f05819df10d7b09f6d1eb6f8534a8f68e5a4fe61	View
148721	28289	CVE-2015-7872	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05068676	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
10615	JVNDB-2015-005935	Linux Kernel の security/keys/gc.c の key_gc_unused_keys 関数におけるサービス運用妨害 (DoS) の脆弱性	Linux Kernel の security/keys/gc.c の key_gc_unused_keys 関数には、サービス運用妨害 (OOPS) 状態にされる脆弱性が存在します。	CVE-2015-7872	85097	CVE-2015-7872	28289	2.1		http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005935.html	2015-10-15	2015-11-17	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.35 MB
View render complete	31.82 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.07
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	308.79
Event: Controller.beforeRender	4.60
» Processing toolbar data	4.51
Rendering View	1282.02
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	1234.66
» Event: View.afterRender	0.04
» Event: View.beforeLayout	0.03
» Rendering APP/View/Layouts/default.ctp	29.82
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	9.67
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/28289
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/28289
Remote Port	25643
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.217.2
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.5.50
Http Via	1.1 squid-proxy-5b5d847c96-xkbxz (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.217.2
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.217.2
Unique Id	aGvQte7HAY6oHtuoyKNhXwAAAh0
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.217.2
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.217.2
Redirect Unique Id	aGvQte7HAY6oHtuoyKNhXwAAAh0
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.217.2
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.217.2
Redirect Redirect Unique Id	aGvQte7HAY6oHtuoyKNhXwAAAh0
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1751896245.2878
Request Time	1751896245

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files