Published: 28/09/2014 Updated: 13/02/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 615

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

The futex_wait function in kernel/futex.c in the Linux kernel prior to 2.6.37 does not properly maintain a certain reference count during requeue operations, which allows local users to cause a denial of service (use-after-free and system crash) or possibly gain privileges via a crafted application that triggers a zero count.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.36
linux linux kernel
linux linux kernel 2.6.36.3
linux linux kernel 2.6.36.1
linux linux kernel 2.6.36.2

Multiple security flaws in Linux kernel ...

A flaw was found in the way the Linux kernel's futex subsystem handled reference counting when requeuing futexes during futex_wait() A local, unprivileged user could use this flaw to zero out the reference counter of an inode or an mm struct that backs up the memory area of the futex, which could lead to a use-after-free flaw, resulting in a syste ...

CWE-119 https://bugzilla.redhat.com/show_bug.cgi?id=1094455 http://mirror.linux.org.au/linux/kernel/v2.6/ChangeLog-2.6.37 https://github.com/torvalds/linux/commit/7ada876a8703f23befbb20a7465a702ee39b1704 http://rhn.redhat.com/errata/RHSA-2014-1365.html http://rhn.redhat.com/errata/RHSA-2014-1763.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ada876a8703f23befbb20a7465a702ee39b1704 https://nvd.nist.gov https://usn.ubuntu.com/1041-1/https://access.redhat.com/security/cve/cve-2014-0205

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-0205

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect