Lucene search
UbuntuUSN-2094-1HistoryJan 31, 2014 - 12:00 a.m.
Linux kernel (Raring HWE) vulnerability
2014-01-3100:00:00
ubuntu.com
33
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
25.5%
Releases
- Ubuntu 12.04
Packages
- linux-lts-raring - Linux hardware enablement kernel from Raring
Details
Pageexec reported a bug in the Linux kernel’s recvmsg syscall when called
from code using the x32 ABI. An unprivileged local user could exploit this
flaw to cause a denial of service (system crash) or gain administrator
privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.04 | noarch | linux-image-3.8.0-35-generic | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | block-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | crypto-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fat-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fb-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | firewire-core-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | floppy-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fs-core-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fs-secondary-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | input-modules-3.8.0-35-generic-di | < 3.8.0-35.52~precise1 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu Update for linux USN-2096-1
2014-02-03 00:00:00
Ubuntu: Security Advisory (USN-2094-1)
2014-02-03 00:00:00
Ubuntu: Security Advisory (USN-2095-1)
2014-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2014-0038
2014-01-30 00:00:00
nessus
nessus
Ubuntu 12.04 LTS : linux-lts-raring vulnerability (USN-2094-1)
2014-01-31 00:00:00
Slackware 14.1 : kernel (SSA:2014-050-03)
2014-02-20 00:00:00
Ubuntu 13.10 : linux vulnerability (USN-2096-1)
2014-01-31 00:00:00
exploitpack
exploitpack
seebug
seebug
linux 3.4+ - Local Root (CONFIG_X86_X32=y)
2014-07-01 00:00:00
Linux 3.4+ - Arbitrary write with CONFIG_X86_X32
2014-07-01 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2014-01-31 00:00:00
Linux kernel (Saucy HWE) vulnerability
2014-01-31 00:00:00
cve
cve
CVE-2014-0038
2014-02-06 22:55:03
kitploit
kitploit
Exploit Linux 3.4+ Arbitrary write with CONFIG_X86_X32
2014-02-04 19:07:00
Exploit Linux 3.4+ Local Root (CONFIG_X86_X32=y)
2014-02-04 19:10:00
prion
prion
Command injection
2014-02-06 22:55:00
cvelist
cvelist
CVE-2014-0038
2014-02-06 22:00:00
mageia
mageia
Updated kernel-linus package fixes security vulnerability
2014-02-12 21:17:13
Updated kernel-rt packages fix security vulnerability
2014-02-13 02:48:23
Updated kernel-tmb packages fix CVE-2014-0038
2014-02-11 00:13:44
zdt
zdt
Linux kernel 3.4+ Arbitrary write with CONFIG_X86_X32
2014-02-02 00:00:00
Linux kernel 3.4+ local root (CONFIG_X86_X32=y)
2014-02-02 00:00:00
Linux Kernel 3.13.1 - 'Recvmmsg' Privilege Escalation (Metasploit)
2016-10-12 00:00:00
debiancve
debiancve
CVE-2014-0038
2014-02-06 22:55:03
securityvulns
securityvulns
[USN-2096-1] Linux kernel vulnerability
2014-02-01 00:00:00
[ MDVSA-2014:038 ] kernel
2014-02-18 00:00:00
Linux kernel security vulnerabilities
2014-03-31 00:00:00
canvas
canvas
Immunity Canvas: RECVMMSG
2014-02-06 22:55:00
packetstorm
packetstorm
X86_X32 recvmmsg Arbitrary Write Local Root
2014-02-03 00:00:00
Linux Kernel 3.13.1 Recvmmsg Privilege Escalation
2016-10-10 00:00:00
nvd
nvd
CVE-2014-0038
2014-02-06 22:55:03
hackerone
hackerone
Sandbox Escape: Linux 3.4+: arbitrary write with CONFIG_X86_X32
2014-01-28 23:52:58
slackware
slackware
kernel
2014-02-19 20:29:09
metasploit
metasploit
Linux Kernel recvmmsg Privilege Escalation
2016-10-09 03:58:09
exploitdb
exploitdb
suse
suse
kernel to 3.11.10 (important)
2014-02-06 19:21:55
Security update for the Linux Kernel (important)
2017-12-08 18:11:43
Security update for the Linux Kernel (important)
2017-12-04 15:07:06
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2014-05-19 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
25.5%
Related for USN-2094-1