CVE-2015-4001

EPSS 5.9%

Published: 6/7/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-4001

Description

Integer signedness error in the oz_hcd_get_desc_cnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a crafted packet.

Affected packages (1)

Debian/linuxfrom 0, < 4.1.3-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-4001