CVE-2014-9419 in Kernel
Сводка (Английский)
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application that reads a TLS base address.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Резервировать
25.12.2014
Раскрытие
25.12.2014
Статус
Подтверждённый
Записи
VulDB provides additional information and datapoints for this CVE: