Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-3940
HistoryJun 05, 2014 - 5:55 p.m.

CVE-2014-3940

2014-06-0517:55:07
CWE-362
[email protected]
web.nvd.nist.gov

4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Linux kernel through 3.14.5 does not properly consider the presence of hugetlb entries, which allows local users to cause a denial of service (memory corruption or system crash) by accessing certain memory locations, as demonstrated by triggering a race condition via numa_maps read operations during hugepage migration, related to fs/proc/task_mmu.c and mm/mempolicy.c.

Affected configurations

NVD
Node
redhatenterprise_linuxMatch6.0
OR
redhatenterprise_mrgMatch2.0
Node
linuxlinux_kernelRange3.14.5
OR
linuxlinux_kernelMatch3.14-
OR
linuxlinux_kernelMatch3.14rc1
OR
linuxlinux_kernelMatch3.14rc2
OR
linuxlinux_kernelMatch3.14rc3
OR
linuxlinux_kernelMatch3.14rc4
OR
linuxlinux_kernelMatch3.14rc5
OR
linuxlinux_kernelMatch3.14rc6
OR
linuxlinux_kernelMatch3.14rc7
OR
linuxlinux_kernelMatch3.14rc8
OR
linuxlinux_kernelMatch3.14.1
OR
linuxlinux_kernelMatch3.14.2
OR
linuxlinux_kernelMatch3.14.3
OR
linuxlinux_kernelMatch3.14.4

Related

cvelist 1
prion 1
debiancve 1
ubuntucve 1
f5 2
securityvulns 2
cve 1
nessus 16
openvas 38
ubuntu 2
redhat 3
veracode 12
centos 2
oraclelinux 2
fedora 30
cvelist
cvelist
CVE-2014-3940
2014-06-05 17:00:00
prion
prion
Race condition
2014-06-05 17:55:00
debiancve
debiancve
CVE-2014-3940
2014-06-05 17:55:07
ubuntucve
ubuntucve
CVE-2014-3940
2014-06-05 00:00:00
f5
f5
K15685 : Linux kernel vulnerability CVE-2014-3940
2015-10-06 00:00:00
SOL15685 - Linux kernel vulnerability CVE-2014-3940
2014-10-15 00:00:00
securityvulns
securityvulns
[oss-security] CVE-2014-3940 - Linux kernel - missing check during hugepage migration
2014-06-17 00:00:00
Linux kernel multiple security vulnerabilities
2014-07-21 00:00:00
cve
cve
CVE-2014-3940
2014-06-05 17:55:07
nessus
nessus
Fedora 20 : kernel-3.14.6-200.fc20 (2014-7128)
2014-06-12 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (SOL15685)
2014-10-16 00:00:00
Fedora 19 : kernel-3.14.7-100.fc19 (2014-7320)
2014-06-17 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2288-1)
2014-07-21 00:00:00
Ubuntu: Security Advisory (USN-2290-1)
2014-07-21 00:00:00
Oracle: Security Advisory (ELSA-2015-1272)
2015-10-06 00:00:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2014-07-17 00:00:00
Linux kernel vulnerabilities
2014-07-17 00:00:00
redhat
redhat
(RHSA-2015:1272) Moderate: kernel security, bug fix, and enhancement update
2015-07-22 00:00:00
(RHSA-2014:0913) Important: kernel-rt security update
2014-07-22 00:00:00
(RHSA-2015:0290) Important: kernel security, bug fix, and enhancement update
2015-03-05 00:00:00
veracode
veracode
Privilege Escalation
2019-05-02 05:40:58
Information Disclosure
2019-05-02 05:40:58
Buffer Overflow
2019-05-02 05:40:58
centos
centos
kernel, perf, python security update
2015-07-26 14:10:53
kernel, perf, python security update
2015-03-17 13:28:28
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2015-07-28 00:00:00
kernel security, bug fix, and enhancement update
2015-03-11 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.14.6-200.fc20
2014-06-11 16:31:10
[SECURITY] Fedora 20 Update: kernel-3.14.8-200.fc20
2014-06-18 22:25:48
[SECURITY] Fedora 20 Update: kernel-3.15.4-200.fc20
2014-07-11 02:02:48

4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for NVD:CVE-2014-3940
cvelist1prion1debiancve1ubuntucve1f52securityvulns2cve1nessus16openvas38ubuntu2redhat3veracode12centos2oraclelinux2fedora30