ALT-PU-2014-2362-1
Package kernel-image-std-def updated to version 3.14.24-alt1 for branch sisyphus in task 134820.
Closed vulnerabilities
Published: 2014-11-10
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-7825
kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the perf subsystem, which allows local users to cause a denial of service (out-of-bounds read and OOPS) or bypass the ASLR protection mechanism via a crafted application.
Severity: HIGH (7.8)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=086ba77a6db00ed858ff07451bedee197df868c9
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=086ba77a6db00ed858ff07451bedee197df868c9
- RHSA-2014:1943
- RHSA-2014:1943
- RHSA-2015:0290
- RHSA-2015:0290
- RHSA-2015:0864
- RHSA-2015:0864
- [oss-security] 20141106 Exploitable issues in Linux perf/ftrace subsystems
- [oss-security] 20141106 Exploitable issues in Linux perf/ftrace subsystems
- 70972
- 70972
- https://bugzilla.redhat.com/show_bug.cgi?id=1161565
- https://bugzilla.redhat.com/show_bug.cgi?id=1161565
- linux-kernel-cve20147825-dos(98557)
- linux-kernel-cve20147825-dos(98557)
- https://github.com/torvalds/linux/commit/086ba77a6db00ed858ff07451bedee197df868c9
- https://github.com/torvalds/linux/commit/086ba77a6db00ed858ff07451bedee197df868c9
Published: 2014-11-10
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2014-7826
kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the ftrace subsystem, which allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via a crafted application.
Severity: HIGH (7.8)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=086ba77a6db00ed858ff07451bedee197df868c9
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=086ba77a6db00ed858ff07451bedee197df868c9
- SUSE-SU-2015:0481
- SUSE-SU-2015:0481
- openSUSE-SU-2015:0566
- openSUSE-SU-2015:0566
- RHSA-2014:1943
- RHSA-2014:1943
- RHSA-2015:0290
- RHSA-2015:0290
- RHSA-2015:0864
- RHSA-2015:0864
- [oss-security] 20141106 Exploitable issues in Linux perf/ftrace subsystems
- [oss-security] 20141106 Exploitable issues in Linux perf/ftrace subsystems
- 70971
- 70971
- https://bugzilla.redhat.com/show_bug.cgi?id=1161565
- https://bugzilla.redhat.com/show_bug.cgi?id=1161565
- linux-kernel-cve20147826-dos(98556)
- linux-kernel-cve20147826-dos(98556)
- https://github.com/torvalds/linux/commit/086ba77a6db00ed858ff07451bedee197df868c9
- https://github.com/torvalds/linux/commit/086ba77a6db00ed858ff07451bedee197df868c9