USN-2636-1

Advisory lineage Upstream: 6 Downstream: 0

Upstream

CVE-2015-0275 CVE-2015-3636 CVE-2015-4036 UBUNTU-CVE-2015-0275 UBUNTU-CVE-2015-3636 UBUNTU-CVE-2015-4036

Published: 10 Jun 2015, 21:51

Last modified:04 Feb 2026, 02:50

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

10 Jun 2015, 21:51

Published

Vulnerability first disclosed

04 Feb 2026, 02:50

Last Modified

Vulnerability information updated

Description

linux-lts-vivid vulnerabilities Xiong Zhou discovered a bug in the way the EXT4 filesystem handles fallocate zero range functionality when the page size is greater than the block size. A local attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2015-0275) Wen Xu discovered a use-after-free flaw in the Linux kernel's ipv4 ping support. A local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges on the system. (CVE-2015-3636) A memory corruption flaw was discovered in the Linux kernel's scsi subsystem. A local attacker could potentially exploit this flaw to cause a denial of service (system crash). (CVE-2015-4036)

Affected Systems

ubuntu•linux-lts-vivid
< 3.19.0-20.20~14.04.1

USN-2636-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (4)