CVE-2014-3534 in Linux Kernel
Sumário (Inglês)
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACE_POKEUSR_AREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a crafted application that makes a ptrace system call.
Reservar
14/05/2014
Divulgação
01/08/2014
Inscrições
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidade | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 67285 | Linux Kernel __poke_user_compat Elevação de Privilégios | 264 | Não provado | Correção oficial | CVE-2014-3534 |