CVE-2015-7613

Updated: 2023-12-06

CWE: Race Conditions

Description:

Race condition in the IPC object implementation in the Linux kernel through 4.2.3 allows local users to gain privileges by triggering an ipc_addid call that leads to uid and gid comparisons against uninitialized data, related to msg.c, shm.c, and util.c.

CVSS3:

Vendor State

OS	Vendor version	Errata
RHEL 6	2.6.32-573.12.1.el6	RHSA-2015:2636
RHEL 7	3.10.0-327.el7	RHSA-2015:2152
Ubuntu 14.04	3.13.0-65.106	USN-2761-1
Debian 8	3.16.7-ckt11-1+deb8u5	DSA-3372-1
CentOS 7	3.10.0-327.el7	CESA-2015:2152
CentOS 6	2.6.32-573.12.1.el6	CESA-2015:2636
CentOS 7 plus	3.10.0-327.el7.centos.plus	CESA-2015:2152
CentOS 6 plus	2.6.32-573.12.1.el6.centos.plus	CESA-2015:2636
Oracle Linux 6	2.6.32-573.12.1.el6	ELSA-2015-2636
Oracle Linux 7	3.10.0-327.el7	ELSA-2015-2152
Scientific 6	2.6.32-573.12.1.el6	CESA-2015:2636

KernelCare State

OS	Original kernel version	State
RHEL 6	2.6.32-504.1.3.el6 show all hide all 2.6.32-504.12.2.el6 2.6.32-504.16.2.el6 2.6.32-504.23.4.el6 2.6.32-504.3.3.el6 2.6.32-504.30.3.el6 2.6.32-504.8.1.el6 2.6.32-504.el6 2.6.32-573.1.1.el6 2.6.32-573.3.1.el6 2.6.32-573.7.1.el6 2.6.32-573.8.1.el6 2.6.32-573.el6	Released
RHEL 7	3.10.0-123.8.1.el7 show all hide all 3.10.0-123.13.1.el7 3.10.0-229.el7 3.10.0-123.6.3.el7 3.10.0-123.13.2.el7 3.10.0-229.14.1.el7 3.10.0-123.20.1.el7 3.10.0-123.4.2.el7 3.10.0-123.1.2.el7 3.10.0-123.9.2.el7 3.10.0-123.9.3.el7 3.10.0-123.el7 3.10.0-123.4.4.el7 3.10.0-229.4.2.el7 3.10.0-229.7.2.el7 3.10.0-229.11.1.el7 3.10.0-229.20.1.el7 3.10.0-229.1.2.el7	Released
Ubuntu 14.04	3.13.0-53.88 show all hide all 3.13.0-39.66 3.13.0-57.95 3.13.0-37.64 3.13.0-49.83 3.13.0-59.98 3.13.0-41.70 3.13.0-36.63 3.13.0-44.73 3.13.0-49.81 3.13.0-46.75 3.13.0-40.69 3.13.0-33.58 3.13.0-43.72 3.13.0-51.84 3.13.0-62.102 3.13.0-54.91 3.13.0-38.65 3.13.0-40.68 3.13.0-45.74 3.13.0-46.76 3.13.0-46.77 3.13.0-52.86 3.13.0-53.87 3.13.0-55.94 3.13.0-61.100 3.13.0-62.101 3.13.0-64.104 3.13.0-65.105 3.13.0-32.57 3.13.0-46.79 3.13.0-58.97 3.13.0-34.60 3.13.0-35.62 3.13.0-48.80 3.13.0-52.85 3.13.0-63.103 3.13.0-55.92 3.13.0-53.89	Released
Debian 8	3.16.7-ckt9-3~deb8u1 show all hide all 3.16.7-ckt11-1+deb8u2 3.16.7-ckt11-1+deb8u3 3.16.7-ckt11-1+deb8u4 3.16.7-ckt11-1+deb8u1 3.16.7-ckt11-1	Released
CentOS 7	3.10.0-229.7.2.el7 show all hide all 3.10.0-229.11.1.el7 3.10.0-229.el7 3.10.0-123.1.2.el7 3.10.0-123.4.2.el7 3.10.0-123.6.3.el7 3.10.0-123.13.1.el7 3.10.0-123.8.1.el7 3.10.0-123.9.2.el7 3.10.0-229.4.2.el7 3.10.0-123.13.2.el7 3.10.0-229.14.1.el7 3.10.0-123.9.3.el7 3.10.0-123.el7 3.10.0-123.4.4.el7 3.10.0-229.1.2.el7 3.10.0-229.20.1.el7 3.10.0-123.20.1.el7	Released
CentOS 6	2.6.32-504.8.1.el6 show all hide all 2.6.32-573.3.1.el6 2.6.32-504.3.3.el6 2.6.32-504.1.3.el6 2.6.32-504.23.4.el6 2.6.32-504.12.2.el6 2.6.32-504.30.3.el6 2.6.32-504.el6 2.6.32-573.7.1.el6 2.6.32-573.8.1.el6 2.6.32-573.1.1.el6 2.6.32-504.16.2.el6 2.6.32-573.el6	Released
CentOS 7 plus	3.10.0-123.9.3.el7.centos.plus show all hide all 3.10.0-123.el7.centos.plus 3.10.0-123.8.1.el7.centos.plus 3.10.0-123.6.3.el7.centos.plus 3.10.0-229.14.1.el7.centos.plus 3.10.0-123.4.4.el7.centos.plus 3.10.0-123.13.2.el7.centos.plus 3.10.0-229.7.2.el7.centos.plus 3.10.0-123.9.2.el7.centos.plus 3.10.0-229.el7.centos.plus 3.10.0-123.20.1.el7.centos.plus 3.10.0-123.13.1.el7.centos.plus 3.10.0-229.4.2.el7.centos.plus 3.10.0-229.1.2.el7.centos.plus 3.10.0-123.1.2.el7.centos.plus 3.10.0-123.4.2.el7.centos.plus 3.10.0-229.11.1.el7.centos.plus 3.10.0-229.20.1.el7.centos.plus	Released
CentOS 6 plus	2.6.32-573.7.1.el6.centos.plus show all hide all 2.6.32-573.8.1.el6.centos.plus 2.6.32-504.3.3.el6.centos.plus 2.6.32-504.16.2.el6.centos.plus 2.6.32-504.1.3.el6.centos.plus 2.6.32-504.12.2.el6.centos.plus 2.6.32-504.8.1.el6.centos.plus 2.6.32-504.23.4.el6.centos.plus 2.6.32-573.3.1.el6.centos.plus 2.6.32-504.el6.centos.plus 2.6.32-573.1.1.el6.centos.plus 2.6.32-504.30.3.el6.centos.plus 2.6.32-573.el6.centos.plus	Released
Oracle Linux 6	2.6.32-573.7.1.el6 show all hide all 2.6.32-504.3.3.el6 2.6.32-504.23.4.el6 2.6.32-504.16.2.el6 2.6.32-573.el6 2.6.32-504.30.3.el6 2.6.32-504.el6 2.6.32-573.1.1.el6 2.6.32-573.8.1.el6 2.6.32-504.1.3.el6 2.6.32-504.8.1.el6 2.6.32-573.3.1.el6 2.6.32-504.12.2.el6	Released
Oracle Linux 7	3.10.0-229.7.2.el7 show all hide all 3.10.0-229.1.2.el7 3.10.0-229.4.2.el7 3.10.0-123.13.2.el7 3.10.0-123.4.4.el7 3.10.0-229.el7 3.10.0-123.6.3.el7 3.10.0-229.11.1.el7 3.10.0-123.4.2.el7 3.10.0-123.9.3.el7 3.10.0-123.el7 3.10.0-229.14.1.el7 3.10.0-123.8.1.el7 3.10.0-123.9.2.el7 3.10.0-229.20.1.el7 3.10.0-123.1.2.el7 3.10.0-123.20.1.el7 3.10.0-123.13.1.el7	Released
CloudLinux OS 7	3.10.0-233.1.2.lve1.3.33.4.el7 show all hide all 3.10.0-329.7.2.lve1.3.58.el7 3.10.0-223.1.2.lve1.3.22.el7 3.10.0-223.1.2.lve1.3.33.3.el7 3.10.0-223.1.2.lve1.3.33.el7 3.10.0-233.1.2.lve1.3.33.1.el7 3.10.0-329.7.2.lve1.3.50.el7 3.10.0-329.7.2.lve1.3.55.el7 3.10.0-329.7.2.lve1.4.2.el7 3.10.0-329.7.2.lve1.4.4.el7	Released
CloudLinux OS 6	2.6.32-604.16.2.lve1.3.54.el6 show all hide all 2.6.32-604.16.2.lve1.3.58.el6 2.6.32-604.30.3.lve1.3.63.el6	Released
OpenVZ 6	2.6.32-042stab102.9 show all hide all 2.6.32-042stab103.6 2.6.32-042stab104.1 2.6.32-042stab105.14 2.6.32-042stab106.4 2.6.32-042stab106.6 2.6.32-042stab108.1 2.6.32-042stab108.2 2.6.32-042stab108.5 2.6.32-042stab108.6 2.6.32-042stab108.7 2.6.32-042stab108.8 2.6.32-042stab111.11 2.6.32-042stab111.12 2.6.32-042stab112.15	Released
Scientific 6	2.6.32-504.23.4.el6 show all hide all 2.6.32-504.el6 2.6.32-504.3.3.el6 2.6.32-504.12.2.el6 2.6.32-504.16.2.el6 2.6.32-504.30.3.el6 2.6.32-504.8.1.el6 2.6.32-573.7.1.el6 2.6.32-573.8.1.el6 2.6.32-573.1.1.el6 2.6.32-573.el6 2.6.32-504.1.3.el6 2.6.32-573.3.1.el6	Released
OEL 6 Dell		Ready For Release
OEL 7 Dell		Ready For Release
Endurance 7 eig 3.10		Ready For Release
Debian 10 cloud		Will Not Fix
Debian 9 backports		Will Not Fix