UBUNTU-CVE-2015-7885

Advisory lineage Upstream: 1 Downstream: 4

Upstream

CVE-2015-7885

Downstream

USN-2841-1 USN-2842-2 USN-2843-2 USN-2844-1

Published: 23 Oct 2015, 00:00

Last modified:22 Apr 2026, 10:19

Vulnerability Summary

Overall Risk (default)

minimal

9/100

CVSS Score

2.3 LOW

3.0 (osv_ubuntu)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

23 Oct 2015, 00:00

Published

Vulnerability first disclosed

22 Apr 2026, 10:19

Last Modified

Vulnerability information updated

Description

The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application.

CVSS Metrics

v3.0•LOW•Score: 2.3CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Affected Systems

ubuntu•linux
< 3.13.0-73.116
ubuntu•linux-lts-utopic
< 3.16.0-56.75~14.04.1
ubuntu•linux-lts-vivid
< 3.19.0-41.46~14.04.2
ubuntu•linux-lts-wily
< 4.2.0-21.25~14.04.1