Design/Logic Flaw

2014-05-1121:55:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON

The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call, which allows local users to obtain sensitive information from kernel heap memory by leveraging write access to a /dev/fd device.

CPENameOperatorVersion
debian_linuxeq7.0
debian_linuxeq6.0
linux_kernelle3.14.3
linuxeq5
linuxeq6
enterprise_linux_euseq6.3
enterprise_linux_euseq5.6
linux_enterprise_desktopeq11 sp3
linux_enterprise_high_availability_extensioneq11 sp3
linux_enterprise_real_time_extensioneq11 sp3

Name	Operator	Version
debian_linux	eq	7.0
debian_linux	eq	6.0
linux_kernel	le	3.14.3
linux	eq	5
linux	eq	6
enterprise_linux_eus	eq	6.3
enterprise_linux_eus	eq	5.6
linux_enterprise_desktop	eq	11 sp3
linux_enterprise_high_availability_extension	eq	11 sp3
linux_enterprise_real_time_extension	eq	11 sp3