CVE-2014-9419 in Linux Kernelinformación

Resumen (Inglés)

The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application that reads a TLS base address.

Reservar

2014-12-25

Divulgación

2014-12-25

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
73384	Linux Kernel Thread Local Storage __switch_to divulgación de información	200	No está definido	Arreglo oficial	CVE-2014-9419
68463	Linux Kernel TLS Descriptor switch_to divulgación de información	200	No probado	Arreglo oficial	CVE-2014-9419

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

◂ AnteriorVisión De ConjuntoPróximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!