Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-0998HistoryFeb 02, 2015 - 4:59 p.m.
CVE-2014-0998
2015-02-0216:59:00
Debian Security Bug Tracker
security-tracker.debian.org
15
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges via a negative value in a VT_WAITACTIVE ioctl call, which triggers an array index error and out-of-bounds kernel memory access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | kfreebsd-10 | < 10.1~svn274115-3 | kfreebsd-10_10.1~svn274115-3_all.deb |
Related
nvd
nvd
CVE-2014-0998
2015-02-02 16:59:00
threatpost
threatpost
FreeBSD Patches Kernel Bugs
2015-01-28 12:32:00
cve
cve
CVE-2014-0998
2015-02-02 16:59:00
zdt
zdt
FreeBSD Kernel Multiple Vulnerabilities
2015-01-29 00:00:00
cvelist
cvelist
CVE-2014-0998
2015-02-02 16:00:00
prion
prion
Integer overflow
2015-02-02 16:59:00
coresecurity
coresecurity
FreeBSD Kernel Multiple Vulnerabilities
2015-01-27 00:00:00
packetstorm
packetstorm
FreeBSD Kernel Crash / Code Execution / Disclosure
2015-01-28 00:00:00
exploitpack
exploitpack
FreeBSD - Multiple Vulnerabilities
2015-01-29 00:00:00
securityvulns
securityvulns
[CORE-2015-0003] - FreeBSD Kernel Multiple Vulnerabilities
2015-02-02 00:00:00
exploitdb
exploitdb
FreeBSD - Multiple Vulnerabilities
2015-01-29 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2014-0998