Published: 01/04/2014 Updated: 07/11/2023

CVSS v2 Base Score: 4.7 | Impact Score: 6.9 | Exploitability Score: 3.4

VMScore: 419

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C

The arch_dup_task_struct function in the Transactional Memory (TM) implementation in arch/powerpc/kernel/process.c in the Linux kernel prior to 3.13.7 on the powerpc platform does not properly interact with the clone and fork system calls, which allows local users to cause a denial of service (Program Check and system crash) via certain instructions that are executed with the processor in the Transactional state.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

Several security issues were fixed in the kernel ...

A flaw was found in the way the Linux kernel performed forking inside of a transaction A local, unprivileged user on a PowerPC system that supports transactional memory could use this flaw to crash the system ...

CWE-20 http://www.openwall.com/lists/oss-security/2014/03/30/5 https://github.com/torvalds/linux/commit/621b5060e823301d0cba4cb52a7ee3491922d291 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.13.7 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.15 http://secunia.com/advisories/57436 http://www.securityfocus.com/bid/66477 https://exchange.xforce.ibmcloud.com/vulnerabilities/92113 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=621b5060e823301d0cba4cb52a7ee3491922d291 https://nvd.nist.gov https://usn.ubuntu.com/2225-1/https://access.redhat.com/security/cve/cve-2014-2673

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2673

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect