CVE-2015-5157

arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to gain privileges by triggering an NMI.

Affected Software

Name	Vendor	Start Version	End Version
Enterprise_linux_desktop	Redhat	6.0 (including)	6.0 (including)
Enterprise_linux_hpc_node	Redhat	6.0 (including)	6.0 (including)
Enterprise_linux_server	Redhat	6.0 (including)	6.0 (including)
Enterprise_linux_server_eus	Redhat	6.7.z (including)	6.7.z (including)
Enterprise_linux_workstation	Redhat	6.0 (including)	6.0 (including)
Red Hat Enterprise Linux 6	RedHat	kernel-0:2.6.32-573.26.1.el6	*
Red Hat Enterprise Linux 7	RedHat	kernel-rt-0:3.10.0-327.10.1.rt56.211.el7_2	*
Red Hat Enterprise Linux 7	RedHat	kernel-0:3.10.0-327.10.1.el7	*
Red Hat Enterprise MRG 2	RedHat	kernel-rt-1:3.10.0-327.rt56.171.el6rt	*
Linux	Ubuntu	precise	*
Linux	Ubuntu	precise/esm	*
Linux	Ubuntu	trusty	*
Linux	Ubuntu	upstream	*
Linux	Ubuntu	utopic	*
Linux	Ubuntu	vivid	*
Linux	Ubuntu	vivid/ubuntu-core	*
Linux-armadaxp	Ubuntu	precise	*
Linux-armadaxp	Ubuntu	upstream	*
Linux-aws	Ubuntu	upstream	*
Linux-ec2	Ubuntu	upstream	*
Linux-flo	Ubuntu	esm-apps/xenial	*
Linux-flo	Ubuntu	trusty	*
Linux-flo	Ubuntu	upstream	*
Linux-flo	Ubuntu	utopic	*
Linux-flo	Ubuntu	vivid	*
Linux-flo	Ubuntu	vivid/stable-phone-overlay	*
Linux-flo	Ubuntu	wily	*
Linux-flo	Ubuntu	xenial	*
Linux-flo	Ubuntu	yakkety	*
Linux-fsl-imx51	Ubuntu	upstream	*
Linux-gke	Ubuntu	upstream	*
Linux-goldfish	Ubuntu	esm-apps/xenial	*
Linux-goldfish	Ubuntu	trusty	*
Linux-goldfish	Ubuntu	upstream	*
Linux-goldfish	Ubuntu	utopic	*
Linux-goldfish	Ubuntu	vivid	*
Linux-goldfish	Ubuntu	wily	*
Linux-goldfish	Ubuntu	xenial	*
Linux-goldfish	Ubuntu	yakkety	*
Linux-goldfish	Ubuntu	zesty	*
Linux-grouper	Ubuntu	trusty	*
Linux-grouper	Ubuntu	upstream	*
Linux-grouper	Ubuntu	utopic	*
Linux-hwe	Ubuntu	upstream	*
Linux-hwe-edge	Ubuntu	upstream	*
Linux-linaro-omap	Ubuntu	precise	*
Linux-linaro-omap	Ubuntu	upstream	*
Linux-linaro-shared	Ubuntu	precise	*
Linux-linaro-shared	Ubuntu	upstream	*
Linux-linaro-vexpress	Ubuntu	precise	*
Linux-linaro-vexpress	Ubuntu	upstream	*
Linux-lts-quantal	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	precise/esm	*
Linux-lts-quantal	Ubuntu	upstream	*
Linux-lts-raring	Ubuntu	precise	*
Linux-lts-raring	Ubuntu	precise/esm	*
Linux-lts-raring	Ubuntu	upstream	*
Linux-lts-saucy	Ubuntu	precise	*
Linux-lts-saucy	Ubuntu	precise/esm	*
Linux-lts-saucy	Ubuntu	upstream	*
Linux-lts-trusty	Ubuntu	precise	*
Linux-lts-trusty	Ubuntu	upstream	*
Linux-lts-utopic	Ubuntu	trusty	*
Linux-lts-utopic	Ubuntu	upstream	*
Linux-lts-vivid	Ubuntu	trusty	*
Linux-lts-vivid	Ubuntu	upstream	*
Linux-lts-wily	Ubuntu	upstream	*
Linux-lts-xenial	Ubuntu	upstream	*
Linux-maguro	Ubuntu	trusty	*
Linux-maguro	Ubuntu	upstream	*
Linux-mako	Ubuntu	esm-apps/xenial	*
Linux-mako	Ubuntu	trusty	*
Linux-mako	Ubuntu	upstream	*
Linux-mako	Ubuntu	utopic	*
Linux-mako	Ubuntu	vivid	*
Linux-mako	Ubuntu	vivid/stable-phone-overlay	*
Linux-mako	Ubuntu	wily	*
Linux-mako	Ubuntu	xenial	*
Linux-mako	Ubuntu	yakkety	*
Linux-manta	Ubuntu	trusty	*
Linux-manta	Ubuntu	upstream	*
Linux-manta	Ubuntu	utopic	*
Linux-manta	Ubuntu	vivid	*
Linux-manta	Ubuntu	wily	*
Linux-mvl-dove	Ubuntu	upstream	*
Linux-qcm-msm	Ubuntu	precise	*
Linux-qcm-msm	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	vivid/ubuntu-core	*
Linux-snapdragon	Ubuntu	upstream	*
Linux-ti-omap4	Ubuntu	precise	*
Linux-ti-omap4	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-5157
CWE	https://cwe.mitre.org/data/definitions/264.html

Affected Software

References