Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2926-1:1D594
HistoryMay 12, 2014 - 3:59 p.m.

[SECURITY] [DSA 2926-1] linux security update

2014-05-1215:59:46
lists.debian.org
27

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.6%

JSON

Debian Security Advisory DSA-2926-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
May 12, 2014 http://www.debian.org/security/faq

Package : linux
CVE ID : CVE-2014-0196 CVE-2014-1737 CVE-2014-1738 CVE-2014-2851
CVE-2014-3122

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service, information leaks or privilege
escalation:

CVE-2014-0196

Jiri Slaby discovered a race condition in the pty layer, which could
lead to denial of service or privilege escalation.

CVE-2014-1737 / CVE-2014-1738

Matthew Daley discovered that missing input sanitising in the
FDRAWCMD ioctl and an information leak could result in privilege
escalation.

CVE-2014-2851

Incorrect reference counting in the ping_init_sock() function allows
denial of service or privilege escalation.

CVE-2014-3122

Incorrect locking of memory can result in local denial of service.

For the stable distribution (wheezy), these problems have been fixed in
version 3.2.57-3+deb7u1. This update also fixes a regression in the isci
driver and suspend problems with certain AMD CPUs (introduced in the
updated kernel from the Wheezy 7.5 point release).

For the unstable distribution (sid), these problems will be fixed soon.

We recommend that you upgrade your linux packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7amd64linux-headers-3.2.0-4-common-rt< 3.2.57-3+deb7u1linux-headers-3.2.0-4-common-rt_3.2.57-3+deb7u1_amd64.deb
Debian7s390xlinux-image-3.2.0-4-s390x-tape< 3.2.57-3+deb7u1linux-image-3.2.0-4-s390x-tape_3.2.57-3+deb7u1_s390x.deb
Debian7amd64md-modules-3.2.0-4-amd64-di< 3.2.57-3+deb7u1md-modules-3.2.0-4-amd64-di_3.2.57-3+deb7u1_amd64.deb
Debian7armelusb-storage-modules-3.2.0-4-iop32x-di< 3.2.57-3+deb7u1usb-storage-modules-3.2.0-4-iop32x-di_3.2.57-3+deb7u1_armel.deb
Debian7i386linux-libc-dev< 3.2.57-3+deb7u1linux-libc-dev_3.2.57-3+deb7u1_i386.deb
Debian7powerpcnic-shared-modules-3.2.0-4-powerpc64-di< 3.2.57-3+deb7u1nic-shared-modules-3.2.0-4-powerpc64-di_3.2.57-3+deb7u1_powerpc.deb
Debian7i386scsi-modules-3.2.0-4-686-pae-di< 3.2.57-3+deb7u1scsi-modules-3.2.0-4-686-pae-di_3.2.57-3+deb7u1_i386.deb
Debian7i386linux-headers-3.2.0-4-all< 3.2.57-3+deb7u1linux-headers-3.2.0-4-all_3.2.57-3+deb7u1_i386.deb
Debian7i386irda-modules-3.2.0-4-686-pae-di< 3.2.57-3+deb7u1irda-modules-3.2.0-4-686-pae-di_3.2.57-3+deb7u1_i386.deb
Debian7mipsinput-modules-3.2.0-4-4kc-malta-di< 3.2.57-3+deb7u1input-modules-3.2.0-4-4kc-malta-di_3.2.57-3+deb7u1_mips.deb
Rows per page:
1-10 of 9601

Related

openvas 53
securityvulns 3
nessus 42
osv 2
suse 2
debian 1
mageia 10
veracode 8
oraclelinux 10
redhat 9
ubuntu 12
centos 1
altlinux 1
prion 4
f5 3
ubuntucve 4
cvelist 5
nvd 5
attackerkb 1
zdt 2
seebug 3
debiancve 5
packetstorm 1
cve 5
android 1
canvas 1
exploitpack 2
threatpost 1
cisa_kev 1
amazon 1
openvas
openvas
Debian: Security Advisory (DSA-2926-1)
2014-05-11 00:00:00
Debian Security Advisory DSA 2926-1 (linux - security update)
2014-05-12 00:00:00
Debian: Security Advisory (DSA-2928-1)
2014-05-13 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2926-1] linux security update
2014-05-15 00:00:00
[oss-security] Linux kernel floppy ioctl kernel code execution
2014-05-10 00:00:00
[USN-2196-1] Linux kernel vulnerability
2014-05-07 00:00:00
nessus
nessus
Debian DSA-2926-1 : linux - security update
2014-05-13 00:00:00
SuSE 11.3 Security Update : Linux Kernel (SAT Patch Numbers 9233 / 9236 / 9237)
2014-05-16 00:00:00
Debian DSA-2928-1 : linux-2.6 - privilege escalation/denial of service/information leak
2014-05-16 00:00:00
osv
osv
linux - security update
2014-05-12 00:00:00
linux-2.6 - security update
2014-05-14 00:00:00
suse
suse
Security update for Linux Kernel (important)
2014-05-16 03:04:20
Security update for Linux kernel (important)
2014-05-20 19:04:37
debian
debian
[SECURITY] [DSA 2928-1] linux-2.6 security update
2014-05-14 18:21:22
mageia
mageia
Updated kernel-linus packages fix multiple vulnerabilities
2014-05-19 22:30:17
Updated kernel-rt packages fix multiple vulnerabilities
2014-05-19 22:30:17
Updated kernel packages fix multiple vulnerabilities
2014-05-18 03:41:52
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:03:26
Information Disclosure
2019-05-02 05:03:25
Denial Of Service (DoS)
2019-05-02 05:03:26
oraclelinux
oraclelinux
unbreakable enterprise kernel security update
2014-06-20 00:00:00
kernel security and bug fix update
2014-06-11 00:00:00
kernel security and bug fix update
2014-06-11 00:00:00
redhat
redhat
(RHSA-2014:0801) Important: kernel security update
2014-06-26 00:00:00
(RHSA-2014:0557) Important: kernel-rt security update
2014-05-27 00:00:00
(RHSA-2014:0772) Important: kernel security and bug fix update
2014-06-19 00:00:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2014-06-27 00:00:00
Linux kernel vulnerabilities
2014-05-27 00:00:00
Linux kernel vulnerabilities
2014-05-26 00:00:00
centos
centos
kernel security update
2014-06-11 11:01:17
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt25
2014-06-21 00:00:00
prion
prion
Code injection
2014-05-11 21:55:00
Integer overflow
2014-04-14 23:55:00
Input validation
2014-05-11 21:55:00
f5
f5
K15852 : Linux kernel vulnerability CVE-2014-3122
2015-09-16 00:00:00
SOL15852 - Linux kernel vulnerability CVE-2014-3122
2014-11-19 00:00:00
SOL15319 - Linux kernel TTY vulnerability CVE-2014-0196
2014-06-05 00:00:00
ubuntucve
ubuntucve
CVE-2014-3122
2014-05-11 00:00:00
CVE-2014-2851
2014-04-14 00:00:00
CVE-2014-1738
2014-05-11 00:00:00
cvelist
cvelist
CVE-2014-3122
2014-05-11 21:00:00
CVE-2014-0196
2014-05-07 10:00:00
CVE-2014-1738
2014-05-11 21:00:00
nvd
nvd
CVE-2014-3122
2014-05-11 21:55:06
CVE-2014-2851
2014-04-14 23:55:07
CVE-2014-1738
2014-05-11 21:55:05
attackerkb
attackerkb
CVE-2014-0196
2014-05-07 00:00:00
zdt
zdt
Linux Kernel 3.15-rc4 PTY Race Condition Exploit
2014-05-14 00:00:00
linux group_info refcounter - Overflow Memory Corruption
2014-04-19 00:00:00
seebug
seebug
Linux Kernel 'ping_init_sock()'本地权限提升漏洞
2014-04-15 00:00:00
Linux group_info refcounter - Overflow Memory Corruption
2014-07-01 00:00:00
Linux kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition (x64) Local Privilege Escalation
2014-07-01 00:00:00
debiancve
debiancve
CVE-2014-2851
2014-04-14 23:55:07
CVE-2014-1738
2014-05-11 21:55:05
CVE-2014-3122
2014-05-11 21:55:06
packetstorm
packetstorm
Linux group_info Denial Of Service
2014-04-18 00:00:00
cve
cve
CVE-2014-3122
2014-05-11 21:55:06
CVE-2014-0196
2014-05-07 10:55:04
CVE-2014-2851
2014-04-14 23:55:07
android
android
pty race
2014-04-30 00:00:00
canvas
canvas
Immunity Canvas: LINUX_TTY_RACE
2014-05-07 10:55:00
exploitpack
exploitpack
Linux Kernel 3.14-rc1 3.15-rc4 (x64) - Raw Mode PTY Echo Race Condition Privilege Escalation
2014-05-26 00:00:00
Linux Kernel - group_info refcounter Overflow Memory Corruption
2014-04-18 00:00:00
threatpost
threatpost
Five Year Old Security Vulnerability Patched in Linux Kernel
2014-05-15 11:05:41
cisa_kev
cisa_kev
Linux Kernel Race Condition Vulnerability
2023-05-12 00:00:00
amazon
amazon
Medium: kernel
2014-05-13 16:40:00

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.6%

JSON
Related for DEBIAN:DSA-2926-1:1D594
openvas53securityvulns3nessus42osv2suse2debian1mageia10veracode8oraclelinux10redhat9ubuntu12centos1altlinux1prion4f53ubuntucve4cvelist5nvd5attackerkb1zdt2seebug3debiancve5packetstorm1cve5android1canvas1exploitpack2threatpost1cisa_kev1amazon1