CVE-2015-0239

Name: CVE-2015-0239
Creator: NVD / NIST
Published: 2015-03-02T11:59:04.693+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.64%

Last modified Jun 17, 2026

CVE-2015-0239 is a vulnerability of currently unknown severity. The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.. EPSS estimates a 0.64% chance of exploitation in the next 30 days.

Description

The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.

Metrics

EPSS Probability

0.64%

46.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-269

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	< 3.18.5
Canonical	Ubuntu Linux	12.04
Canonical	Ubuntu Linux	14.04
Canonical	Ubuntu Linux	14.10
Debian	Debian Linux	7.0
Debian	Debian Linux	8.0
Oracle	Linux	5
Oracle	Linux	7
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Workstation	6.0

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3747379accba8e95d70cec0eae0582c8c182050
http://permalink.gmane.org/gmane.linux.kernel.commits.head/502245Broken Link
http://rhn.redhat.com/errata/RHSA-2015-1272.htmlThird Party Advisory
http://www.debian.org/security/2015/dsa-3170Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.5Release Notes, Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2015:058Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/01/27/6Exploit, Mailing List, Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlThird Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.htmlThird Party Advisory
http://www.securityfocus.com/bid/72842Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-2513-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2514-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2515-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2516-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2517-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2518-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1186448Issue Tracking, Third Party Advisory
https://github.com/torvalds/linux/commit/f3747379accba8e95d70cec0eae0582c8c182050Patch, Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3747379accba8e95d70cec0eae0582c8c182050
http://permalink.gmane.org/gmane.linux.kernel.commits.head/502245Broken Link
http://rhn.redhat.com/errata/RHSA-2015-1272.htmlThird Party Advisory
http://www.debian.org/security/2015/dsa-3170Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.5Release Notes, Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2015:058Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/01/27/6Exploit, Mailing List, Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlThird Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.htmlThird Party Advisory
http://www.securityfocus.com/bid/72842Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-2513-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2514-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2515-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2516-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2517-1Third Party Advisory
http://www.ubuntu.com/usn/USN-2518-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1186448Issue Tracking, Third Party Advisory
https://github.com/torvalds/linux/commit/f3747379accba8e95d70cec0eae0582c8c182050Patch, Third Party Advisory

Timeline

Published: Mar 2, 2015
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2015-0239?

How severe is CVE-2015-0239?

Severity scoring for CVE-2015-0239 is pending analysis. The EPSS model estimates a 0.64% probability of exploitation in the next 30 days.

How do I fix CVE-2015-0239?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-0239?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST