Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel prior to 4.0 allows context-dependent malicious users to gain privileges by constructing a crafted microcode header and leveraging root privileges for write access to the initrd.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
fedoraproject fedora 21 |