CVE-2015-7837

moderate-risk

Published 2017-09-19

The Linux kernel, as used in Red Hat Enterprise Linux 7, kernel-rt, and Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended securelevel/secureboot restrictions by leveraging improper handling of secure_boot flag across kexec reboot.

Do I need to act?

0.07% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (9)

Enterprise Linux Server Aus

Enterprise Linux Workstation

Enterprise Mrg

Enterprise Linux

Enterprise Linux Desktop

Enterprise Linux Server Aus

Kernel-Rt

Affected Vendors

Redhat

References (12)

Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-2152.html

Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-2411.html

Mailing List http://www.openwall.com/lists/oss-security/2015/10/15/6

Third Party Advisory http://www.securityfocus.com/bid/77097

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1272472

Issue Tracking https://github.com/mjg59/linux/commit/4b2b64d5a6ebc84214755ebccd599baef7c1b798

Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-2152.html

Vendor Advisory http://rhn.redhat.com/errata/RHSA-2015-2411.html

Mailing List http://www.openwall.com/lists/oss-security/2015/10/15/6

Third Party Advisory http://www.securityfocus.com/bid/77097

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1272472

Issue Tracking https://github.com/mjg59/linux/commit/4b2b64d5a6ebc84214755ebccd599baef7c1b798

/ 100

moderate-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 15/34 · Moderate