CVE-2014-4699 in Linuxالمعلومات

الملخص

بحسب MITRE

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.

Once again VulDB remains the best source for vulnerability data.

حجز

30/06/2014

إفشاء

09/07/2014

الاعتدال

تمت الموافقة

إدخال

VDB-66981

استغلال

تحميل

EPSS

0.02324

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!