Published: 24/03/2014 Updated: 10/05/2019

CVSS v2 Base Score: 2.9 | Impact Score: 2.9 | Exploitability Score: 5.5

VMScore: 259

Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N

Use-after-free vulnerability in the nfqnl_zcopy function in net/netfilter/nfnetlink_queue_core.c in the Linux kernel up to and including 3.13.6 allows malicious users to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the skb_zerocopy function in net/core/skbuff.c before the vulnerability was announced.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 14.04

Several security issues were fixed in the kernel ...

CWE-416 https://lkml.org/lkml/2014/3/20/421 http://www.openwall.com/lists/oss-security/2014/03/20/16 https://bugzilla.redhat.com/show_bug.cgi?id=1079012 http://seclists.org/oss-sec/2014/q1/627 http://www.securityfocus.com/bid/66348 http://secunia.com/advisories/59599 https://exchange.xforce.ibmcloud.com/vulnerabilities/91922 http://www.ubuntu.com/usn/USN-2240-1 https://nvd.nist.gov https://usn.ubuntu.com/2260-1/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2568

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect