UBUNTU-CVE-2015-7513

Advisory lineage Upstream: 1 Downstream: 4

Upstream

CVE-2015-7513

Downstream

USN-2887-1 USN-2888-1 USN-2889-2 USN-2890-2

Published: 31 Dec 2015, 00:00

Last modified:12 May 2026, 13:26

Vulnerability Summary

Overall Risk (default)

medium

26/100

CVSS Score

6.5 MEDIUM

3.1 (osv_ubuntu)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

31 Dec 2015, 00:00

Published

Vulnerability first disclosed

12 May 2026, 13:26

Last Modified

Vulnerability information updated

Description

arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash) via a zero value, related to the kvm_vm_ioctl_set_pit and kvm_vm_ioctl_set_pit2 functions.

CVSS Metrics

v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
v3.0•MEDIUM•Score: 6.5CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected Systems

ubuntu•linux
< 3.13.0-77.121
ubuntu•linux-azure
all
ubuntu•linux-azure-6.11
all
ubuntu•linux-azure-fde
all
ubuntu•linux-azure-fde-5.15
all
ubuntu•linux-gcp
all
ubuntu•linux-gcp-6.11
all
ubuntu•linux-gke
all
ubuntu•linux-gkeop
all
ubuntu•linux-hwe
all
ubuntu•linux-hwe-6.11
all
ubuntu•linux-hwe-edge
all
ubuntu•linux-intel-iot-realtime
all
ubuntu•linux-lowlatency-hwe-6.11
all
ubuntu•linux-lts-utopic
< 3.16.0-60.80~14.04.1
ubuntu•linux-lts-vivid
< 3.19.0-49.55~14.04.1
ubuntu•linux-lts-wily
< 4.2.0-27.32~14.04.1
ubuntu•linux-raspi-realtime
all
ubuntu•linux-raspi2
all
ubuntu•linux-realtime
all | all
ubuntu•linux-riscv
all | all | all