Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-9419HistoryDec 26, 2014 - 12:59 a.m.
CVE-2014-9419
2014-12-2600:59:00
Debian Security Bug Tracker
security-tracker.debian.org
38
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
10.1%
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application that reads a TLS base address.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 3.16.7-ckt4-1 | linux_3.16.7-ckt4-1_all.deb |
| Debian | 11 | all | linux | < 3.16.7-ckt4-1 | linux_3.16.7-ckt4-1_all.deb |
| Debian | 999 | all | linux | < 3.16.7-ckt4-1 | linux_3.16.7-ckt4-1_all.deb |
| Debian | 13 | all | linux | < 3.16.7-ckt4-1 | linux_3.16.7-ckt4-1_all.deb |
Related
nessus
nessus
F5 Networks BIG-IP : Linux kernel vulnerability (SOL17551)
2015-11-09 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3041)
2015-06-11 00:00:00
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3043)
2015-06-11 00:00:00
cvelist
cvelist
CVE-2014-9419
2014-12-26 00:00:00
nvd
nvd
CVE-2014-9419
2014-12-26 00:59:00
openvas
openvas
F5 BIG-IP - Linux kernel vulnerability CVE-2014-9419
2015-11-09 00:00:00
Oracle: Security Advisory (ELSA-2015-3043)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2015-3042)
2015-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2014-9419
2014-12-25 00:00:00
prion
prion
Design/Logic Flaw
2014-12-26 00:59:00
cve
cve
CVE-2014-9419
2014-12-26 00:59:00
f5
f5
SOL17551 - Linux kernel vulnerability CVE-2014-9419
2015-11-06 00:00:00
K17551 : Linux kernel vulnerability CVE-2014-9419
2015-11-06 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-06-10 00:00:00
Unbreakable Enterprise kernel security update
2015-06-10 00:00:00
Unbreakable Enterprise kernel security update
2015-06-10 00:00:00
debian
debian
[SECURITY] [DSA 3128-1] linux security update
2015-01-15 06:41:29
[SECURITY] [DSA 3128-1] linux security update
2015-01-15 06:41:29
[SECURITY] [DLA 155-1] linux-2.6 security update
2015-02-18 23:22:13
centos
centos
kernel, perf, python security update
2015-06-10 09:06:44
kernel, perf, python security update
2015-11-30 19:36:22
redhat
redhat
osv
osv
linux - security update
2015-01-15 00:00:00
linux-2.6 - security update
2015-02-18 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-01-07 18:14:58
Updated kernel-linus packages fix security vulnerabilities
2015-02-19 17:43:07
Updated kernel-tmb packages fix security vulnerabilities
2015-02-19 17:43:07
suse
suse
Security update for the Linux Kernel (important)
2015-03-18 22:04:55
Security update for the Linux Kernel (important)
2015-04-13 14:17:21
Security update for Linux Kernel (important)
2015-04-13 14:04:48
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2015-03-24 00:00:00
Linux kernel vulnerabilities
2015-03-24 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2015-02-26 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2015-01-18 00:00:00
[ MDVSA-2015:027 ] kernel
2015-01-18 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-3.17.8-300.fc21
2015-01-11 02:58:06
[SECURITY] Fedora 21 Update: kernel-3.18.3-201.fc21
2015-01-26 02:31:22
[SECURITY] Fedora 21 Update: kernel-3.18.5-201.fc21
2015-02-06 04:00:35
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
10.1%
Related for DEBIANCVE:CVE-2014-9419