Lucene search
HistoryNov 30, 2014 - 1:59 a.m.
CVE-2014-8884
cve-2014-8884
buffer overflow
ttusbdecfe
linux kernel
denial of service
privilege escalation
nvd
ioctl call
6.1 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:P/I:P/A:C
6.4 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Stack-based buffer overflow in the ttusbdecfe_dvbs_diseqc_send_master_cmd function in drivers/media/usb/ttusb-dec/ttusbdecfe.c in the Linux kernel before 3.17.4 allows local users to cause a denial of service (system crash) or possibly gain privileges via a large message length in an ioctl call.
Affected configurations
Node
linuxlinux_kernelRange≤3.17.3
ORlinuxlinux_kernelMatch3.0rc1
ORlinuxlinux_kernelMatch3.0rc2
ORlinuxlinux_kernelMatch3.0rc3
ORlinuxlinux_kernelMatch3.0rc4
ORlinuxlinux_kernelMatch3.0rc5
ORlinuxlinux_kernelMatch3.0rc6
ORlinuxlinux_kernelMatch3.0rc7
ORlinuxlinux_kernelMatch3.0.1
ORlinuxlinux_kernelMatch3.0.2
ORlinuxlinux_kernelMatch3.0.3
ORlinuxlinux_kernelMatch3.0.4
ORlinuxlinux_kernelMatch3.0.5
ORlinuxlinux_kernelMatch3.0.6
ORlinuxlinux_kernelMatch3.0.7
ORlinuxlinux_kernelMatch3.0.8
ORlinuxlinux_kernelMatch3.0.9
ORlinuxlinux_kernelMatch3.0.10
ORlinuxlinux_kernelMatch3.0.11
ORlinuxlinux_kernelMatch3.0.12
ORlinuxlinux_kernelMatch3.0.13
ORlinuxlinux_kernelMatch3.0.14
ORlinuxlinux_kernelMatch3.0.15
ORlinuxlinux_kernelMatch3.0.16
ORlinuxlinux_kernelMatch3.0.17
ORlinuxlinux_kernelMatch3.0.18
ORlinuxlinux_kernelMatch3.0.19
ORlinuxlinux_kernelMatch3.0.20
ORlinuxlinux_kernelMatch3.0.21
ORlinuxlinux_kernelMatch3.0.22
ORlinuxlinux_kernelMatch3.0.23
ORlinuxlinux_kernelMatch3.0.24
ORlinuxlinux_kernelMatch3.0.25
ORlinuxlinux_kernelMatch3.0.26
ORlinuxlinux_kernelMatch3.0.27
ORlinuxlinux_kernelMatch3.0.28
ORlinuxlinux_kernelMatch3.0.29
ORlinuxlinux_kernelMatch3.0.30
ORlinuxlinux_kernelMatch3.0.31
ORlinuxlinux_kernelMatch3.0.32
ORlinuxlinux_kernelMatch3.0.33
ORlinuxlinux_kernelMatch3.0.34
ORlinuxlinux_kernelMatch3.0.35
ORlinuxlinux_kernelMatch3.0.36
ORlinuxlinux_kernelMatch3.0.37
ORlinuxlinux_kernelMatch3.0.38
ORlinuxlinux_kernelMatch3.0.39
ORlinuxlinux_kernelMatch3.0.40
ORlinuxlinux_kernelMatch3.0.41
ORlinuxlinux_kernelMatch3.0.42
ORlinuxlinux_kernelMatch3.0.43
ORlinuxlinux_kernelMatch3.0.44
ORlinuxlinux_kernelMatch3.0.45
ORlinuxlinux_kernelMatch3.0.46
ORlinuxlinux_kernelMatch3.0.47
ORlinuxlinux_kernelMatch3.0.48
ORlinuxlinux_kernelMatch3.0.49
ORlinuxlinux_kernelMatch3.0.50
ORlinuxlinux_kernelMatch3.0.51
ORlinuxlinux_kernelMatch3.0.52
ORlinuxlinux_kernelMatch3.0.53
ORlinuxlinux_kernelMatch3.0.54
ORlinuxlinux_kernelMatch3.0.55
ORlinuxlinux_kernelMatch3.0.56
ORlinuxlinux_kernelMatch3.0.57
ORlinuxlinux_kernelMatch3.0.58
ORlinuxlinux_kernelMatch3.0.59
ORlinuxlinux_kernelMatch3.0.60
ORlinuxlinux_kernelMatch3.0.61
ORlinuxlinux_kernelMatch3.0.62
ORlinuxlinux_kernelMatch3.0.63
ORlinuxlinux_kernelMatch3.0.64
ORlinuxlinux_kernelMatch3.0.65
ORlinuxlinux_kernelMatch3.0.66
ORlinuxlinux_kernelMatch3.0.67
ORlinuxlinux_kernelMatch3.0.68
ORlinuxlinux_kernelMatch3.1
ORlinuxlinux_kernelMatch3.1rc1
ORlinuxlinux_kernelMatch3.1rc2
ORlinuxlinux_kernelMatch3.1rc3
ORlinuxlinux_kernelMatch3.1rc4
ORlinuxlinux_kernelMatch3.1.1
ORlinuxlinux_kernelMatch3.1.2
ORlinuxlinux_kernelMatch3.1.3
ORlinuxlinux_kernelMatch3.1.4
ORlinuxlinux_kernelMatch3.1.5
ORlinuxlinux_kernelMatch3.1.6
ORlinuxlinux_kernelMatch3.1.7
ORlinuxlinux_kernelMatch3.1.8
ORlinuxlinux_kernelMatch3.1.9
ORlinuxlinux_kernelMatch3.1.10
ORlinuxlinux_kernelMatch3.2
ORlinuxlinux_kernelMatch3.2x86
ORlinuxlinux_kernelMatch3.2rc2
ORlinuxlinux_kernelMatch3.2rc3
ORlinuxlinux_kernelMatch3.10
ORlinuxlinux_kernelMatch3.10.0arm64
ORlinuxlinux_kernelMatch3.10.1
ORlinuxlinux_kernelMatch3.10.1arm64
ORlinuxlinux_kernelMatch3.10.2
ORlinuxlinux_kernelMatch3.10.2arm64
ORlinuxlinux_kernelMatch3.10.3
ORlinuxlinux_kernelMatch3.10.3arm64
ORlinuxlinux_kernelMatch3.10.4
ORlinuxlinux_kernelMatch3.10.4arm64
ORlinuxlinux_kernelMatch3.10.5
ORlinuxlinux_kernelMatch3.10.5arm64
ORlinuxlinux_kernelMatch3.10.6
ORlinuxlinux_kernelMatch3.10.6arm64
ORlinuxlinux_kernelMatch3.10.7
ORlinuxlinux_kernelMatch3.10.7arm64
ORlinuxlinux_kernelMatch3.10.8
ORlinuxlinux_kernelMatch3.10.8arm64
ORlinuxlinux_kernelMatch3.10.9
ORlinuxlinux_kernelMatch3.10.9arm64
ORlinuxlinux_kernelMatch3.10.10
ORlinuxlinux_kernelMatch3.10.11
ORlinuxlinux_kernelMatch3.10.12
ORlinuxlinux_kernelMatch3.10.13
ORlinuxlinux_kernelMatch3.10.14
ORlinuxlinux_kernelMatch3.10.15
ORlinuxlinux_kernelMatch3.10.16
ORlinuxlinux_kernelMatch3.10.17
ORlinuxlinux_kernelMatch3.10.18
ORlinuxlinux_kernelMatch3.10.19
ORlinuxlinux_kernelMatch3.10.20
ORlinuxlinux_kernelMatch3.10.21
ORlinuxlinux_kernelMatch3.10.22
ORlinuxlinux_kernelMatch3.10.23
ORlinuxlinux_kernelMatch3.10.24
ORlinuxlinux_kernelMatch3.10.25
ORlinuxlinux_kernelMatch3.10.26
ORlinuxlinux_kernelMatch3.10.27
ORlinuxlinux_kernelMatch3.10.28
ORlinuxlinux_kernelMatch3.10.29
ORlinuxlinux_kernelMatch3.11
ORlinuxlinux_kernelMatch3.11.1
ORlinuxlinux_kernelMatch3.11.2
ORlinuxlinux_kernelMatch3.11.3
ORlinuxlinux_kernelMatch3.11.4
ORlinuxlinux_kernelMatch3.11.5
ORlinuxlinux_kernelMatch3.11.6
ORlinuxlinux_kernelMatch3.11.7
ORlinuxlinux_kernelMatch3.11.8
ORlinuxlinux_kernelMatch3.11.9
ORlinuxlinux_kernelMatch3.11.10
ORlinuxlinux_kernelMatch3.12
ORlinuxlinux_kernelMatch3.12.1
ORlinuxlinux_kernelMatch3.12.2
ORlinuxlinux_kernelMatch3.12.3
ORlinuxlinux_kernelMatch3.12.4
ORlinuxlinux_kernelMatch3.12.5
ORlinuxlinux_kernelMatch3.12.6
ORlinuxlinux_kernelMatch3.12.7
ORlinuxlinux_kernelMatch3.12.8
ORlinuxlinux_kernelMatch3.12.9
ORlinuxlinux_kernelMatch3.12.10
ORlinuxlinux_kernelMatch3.12.11
ORlinuxlinux_kernelMatch3.12.12
ORlinuxlinux_kernelMatch3.12.13
ORlinuxlinux_kernelMatch3.12.14
ORlinuxlinux_kernelMatch3.12.15
ORlinuxlinux_kernelMatch3.12.16
ORlinuxlinux_kernelMatch3.12.17
ORlinuxlinux_kernelMatch3.13
ORlinuxlinux_kernelMatch3.13.1
ORlinuxlinux_kernelMatch3.13.2
ORlinuxlinux_kernelMatch3.13.3
ORlinuxlinux_kernelMatch3.13.4
ORlinuxlinux_kernelMatch3.13.5
ORlinuxlinux_kernelMatch3.13.6
ORlinuxlinux_kernelMatch3.13.7
ORlinuxlinux_kernelMatch3.13.8
ORlinuxlinux_kernelMatch3.13.9
ORlinuxlinux_kernelMatch3.13.10
ORlinuxlinux_kernelMatch3.13.11
ORlinuxlinux_kernelMatch3.14-
ORlinuxlinux_kernelMatch3.14rc1
ORlinuxlinux_kernelMatch3.14rc2
ORlinuxlinux_kernelMatch3.14rc3
ORlinuxlinux_kernelMatch3.14rc4
ORlinuxlinux_kernelMatch3.14rc5
ORlinuxlinux_kernelMatch3.14rc6
ORlinuxlinux_kernelMatch3.14rc7
ORlinuxlinux_kernelMatch3.14rc8
ORlinuxlinux_kernelMatch3.14.1
ORlinuxlinux_kernelMatch3.14.2
ORlinuxlinux_kernelMatch3.14.3
ORlinuxlinux_kernelMatch3.14.4
ORlinuxlinux_kernelMatch3.14.5
ORlinuxlinux_kernelMatch3.15
ORlinuxlinux_kernelMatch3.15.1
ORlinuxlinux_kernelMatch3.15.2
ORlinuxlinux_kernelMatch3.15.3
ORlinuxlinux_kernelMatch3.15.4
ORlinuxlinux_kernelMatch3.15.5
ORlinuxlinux_kernelMatch3.15.6
ORlinuxlinux_kernelMatch3.15.7
ORlinuxlinux_kernelMatch3.15.8
ORlinuxlinux_kernelMatch3.16.0
ORlinuxlinux_kernelMatch3.16.1
ORlinuxlinux_kernelMatch3.17
ORlinuxlinux_kernelMatch3.17.1
ORlinuxlinux_kernelMatch3.17.2
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f2e323ec96077642d397bb1c355def536d489d16
rhn.redhat.com/errata/RHSA-2015-0290.html
rhn.redhat.com/errata/RHSA-2015-0782.html
rhn.redhat.com/errata/RHSA-2015-0864.html
secunia.com/advisories/62305
www.debian.org/security/2014/dsa-3093
www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4
www.openwall.com/lists/oss-security/2014/11/14/7
bugzilla.redhat.com/show_bug.cgi?id=1164266
github.com/torvalds/linux/commit/f2e323ec96077642d397bb1c355def536d489d16
Related
prion
prion
Stack overflow
2014-11-30 01:59:00
f5
f5
K16558 : Linux kernel vulnerability CVE-2014-8884
2015-05-08 00:00:00
SOL16558 - Linux kernel vulnerability CVE-2014-8884
2015-05-08 00:00:00
ubuntucve
ubuntucve
CVE-2014-8884
2014-11-29 00:00:00
debiancve
debiancve
CVE-2014-8884
2014-11-30 01:59:06
nvd
nvd
CVE-2014-8884
2014-11-30 01:59:06
cvelist
cvelist
CVE-2014-8884
2014-11-30 01:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3093-1] linux security update
2014-12-11 00:00:00
Linux kernel multiple security vulnerabilities
2014-12-21 00:00:00
[USN-2441-1] Linux kernel vulnerabilities
2014-12-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2466-1)
2015-01-23 00:00:00
Ubuntu: Security Advisory (USN-2465-1)
2015-01-23 00:00:00
Debian Security Advisory DSA 3093-1 (linux - security update)
2014-12-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-01-13 00:00:00
Linux kernel (OMAP4) vulnerabilities
2014-12-12 00:00:00
Linux kernel (Utopic HWE) vulnerabilities
2015-01-13 00:00:00
osv
osv
linux - security update
2014-12-08 00:00:00
linux-2.6 - security update
2014-12-21 00:00:00
nessus
nessus
Debian DSA-3093-1 : linux - security update
2014-12-09 00:00:00
Ubuntu 14.10 : linux vulnerabilities (USN-2468-1)
2015-01-14 00:00:00
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2465-1)
2015-01-14 00:00:00
debian
debian
[SECURITY] [DSA 3093-1] linux security update
2014-12-08 21:09:15
[SECURITY] [DSA 3093-1] linux security update
2014-12-08 21:09:15
[SECURITY] [DLA 118-1] linux-2.6 security update
2014-12-21 17:45:48
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-03-13 00:00:00
Unbreakable Enterprise kernel security and bugfix update
2015-03-19 00:00:00
kernel security and bug fix update
2015-04-21 00:00:00
redhat
redhat
(RHSA-2015:0782) Important: kernel security and bug fix update
2015-04-07 00:00:00
(RHSA-2015:0864) Important: kernel security and bug fix update
2015-04-21 00:00:00
(RHSA-2015:0290) Important: kernel security, bug fix, and enhancement update
2015-03-05 00:00:00
centos
centos
kernel, perf, python security update
2015-04-22 09:51:52
kernel, perf, python security update
2015-03-17 13:28:28
suse
suse
Security update for Linux kernel (important)
2014-12-24 08:08:49
Security update for Linux kernel (important)
2014-12-23 19:06:22
Security update for Linux kernel (important)
2014-12-23 20:05:05
6.1 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:P/I:P/A:C
6.4 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-8884