Lucene search
UbuntuUSN-2096-1HistoryJan 31, 2014 - 12:00 a.m.
Linux kernel vulnerability
2014-01-3100:00:00
ubuntu.com
54
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
27.3%
Releases
- Ubuntu 13.10
Packages
- linux - Linux kernel
Details
Pageexec reported a bug in the Linux kernel’s recvmmsg syscall when called
from code using the x32 ABI. An unprivileged local user could exploit this
flaw to cause a denial of service (system crash) or gain administrator
privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.10 | noarch | linux-image-3.11.0-15-generic-lpae | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | block-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | crypto-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | fat-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | fb-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | firewire-core-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | floppy-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | fs-core-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | fs-secondary-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
| Ubuntu | 13.10 | noarch | input-modules-3.11.0-15-generic-di | < 3.11.0-15.25 | UNKNOWN |
References
Related
kitploit
kitploit
Exploit Linux 3.4+ Arbitrary write with CONFIG_X86_X32
2014-02-04 19:07:00
Exploit Linux 3.4+ Local Root (CONFIG_X86_X32=y)
2014-02-04 19:10:00
openvas
openvas
Ubuntu: Security Advisory (USN-2094-1)
2014-02-03 00:00:00
Ubuntu: Security Advisory (USN-2095-1)
2014-02-03 00:00:00
Ubuntu Update for linux-lts-raring USN-2094-1
2014-02-03 00:00:00
mageia
mageia
Updated kernel-linus package fixes security vulnerability
2014-02-12 21:17:13
Updated kernel package fixes a critical security issue
2014-02-08 23:09:10
Updated kernel-tmb packages fix CVE-2014-0038
2014-02-11 00:13:44
debiancve
debiancve
CVE-2014-0038
2014-02-06 22:55:03
nessus
nessus
Slackware 14.1 : kernel (SSA:2014-050-03)
2014-02-20 00:00:00
Ubuntu 12.04 LTS : linux-lts-saucy vulnerability (USN-2095-1)
2014-01-31 00:00:00
Ubuntu 12.04 LTS : linux-lts-raring vulnerability (USN-2094-1)
2014-01-31 00:00:00
securityvulns
securityvulns
[USN-2096-1] Linux kernel vulnerability
2014-02-01 00:00:00
[ MDVSA-2014:038 ] kernel
2014-02-18 00:00:00
Linux kernel security vulnerabilities
2014-03-31 00:00:00
prion
prion
Command injection
2014-02-06 22:55:00
zdt
zdt
Linux kernel 3.4+ Arbitrary write with CONFIG_X86_X32
2014-02-02 00:00:00
Linux Kernel 3.13.1 - 'Recvmmsg' Privilege Escalation (Metasploit)
2016-10-12 00:00:00
Linux kernel 3.4+ local root (CONFIG_X86_X32=y)
2014-02-02 00:00:00
cvelist
cvelist
CVE-2014-0038
2014-02-06 22:00:00
exploitdb
exploitdb
metasploit
metasploit
Linux Kernel recvmmsg Privilege Escalation
2016-10-09 03:58:09
slackware
slackware
kernel
2014-02-19 20:29:09
packetstorm
packetstorm
Linux Kernel 3.13.1 Recvmmsg Privilege Escalation
2016-10-10 00:00:00
X86_X32 recvmmsg Arbitrary Write Local Root
2014-02-03 00:00:00
seebug
seebug
Linux 3.4+ - Arbitrary write with CONFIG_X86_X32
2014-07-01 00:00:00
linux 3.4+ - Local Root (CONFIG_X86_X32=y)
2014-07-01 00:00:00
hackerone
hackerone
Sandbox Escape: Linux 3.4+: arbitrary write with CONFIG_X86_X32
2014-01-28 23:52:58
ubuntu
ubuntu
Linux kernel (Raring HWE) vulnerability
2014-01-31 00:00:00
Linux kernel (Saucy HWE) vulnerability
2014-01-31 00:00:00
nvd
nvd
CVE-2014-0038
2014-02-06 22:55:03
exploitpack
exploitpack
ubuntucve
ubuntucve
CVE-2014-0038
2014-01-30 00:00:00
cve
cve
CVE-2014-0038
2014-02-06 22:55:03
canvas
canvas
Immunity Canvas: RECVMMSG
2014-02-06 22:55:00
suse
suse
kernel to 3.11.10 (important)
2014-02-06 19:21:55
Security update for the Linux Kernel (important)
2017-12-04 15:07:06
Security update for the Linux Kernel (important)
2017-12-08 18:11:43
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2014-05-19 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
27.3%
Related for USN-2096-1