Published: 28/02/2014 Updated: 05/02/2024

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 642

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The cifs_iovec_write function in fs/cifs/file.c in the Linux kernel up to and including 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory corruption and system crash), or possibly gain privileges via a writev system call with a crafted pointer.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
suse linux enterprise desktop 11
suse linux enterprise server 11
redhat enterprise linux server aus 6.5
redhat enterprise linux server tus 6.5
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
redhat enterprise linux eus 6.5

Debian Bug report logs - #741958 linux: CVE-2014-0069: cifs: incorrect handling of bogus user pointers during uncached writes Package: src:linux; Maintainer for src:linux is Debian Kernel Team <debian-kernel@listsdebianorg>; Reported by: Raphael Geissert <geissert@debianorg> Date: Mon, 17 Mar 2014 16:33:02 UTC Sev ...

The pn_recvmsg function in net/phonet/datagramc in the Linux kernel before 3124 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call The security_contex ...

Several security issues were fixed in the kernel ...

The cifs_iovec_write function in fs/cifs/filec in the Linux kernel through 3135 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory corruption and system crash), or possibly gain privil ...

CWE-119 https://github.com/torvalds/linux/commit/5d81de8e8667da7135d3a32a964087c0faf5483f http://www.openwall.com/lists/oss-security/2014/02/17/4 http://article.gmane.org/gmane.linux.kernel.cifs/9401 https://bugzilla.redhat.com/show_bug.cgi?id=1064253 http://rhn.redhat.com/errata/RHSA-2014-0328.html http://www.securityfocus.com/bid/65588 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00026.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5d81de8e8667da7135d3a32a964087c0faf5483f https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741958 https://nvd.nist.gov https://usn.ubuntu.com/2179-1/https://access.redhat.com/security/cve/cve-2014-0069 https://alas.aws.amazon.com/ALAS-2014-289.html

CVE-2014-0069

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect