The move_pages system call in mm/migrate.c in the Linux kernel doesn’t check the effective uid of the target process. This enables a local attacker to learn the memory layout of a setuid executable allowing mitigation of ASLR.

References

bugzilla.redhat.com/show_bug.cgi?id=1488329

debiancve 1

cve 1

veracode 1

cvelist 1

prion 1

nvd 1

ubuntucve 1

nessus 28

ubuntu 4

openvas 13

cloudfoundry 1

photon 1

oraclelinux 5

suse 5

kitploit 1

osv 2

debian 3

ibm 3

redhat 2

centos 1

androidsecurity 1

debiancve

CVE-2017-14140

2017-09-05 06:29:00

cve

CVE-2017-14140

2017-09-05 06:29:00

veracode

Information Disclosure

2019-05-16 02:50:23

cvelist

CVE-2017-14140

2017-09-05 06:00:00

prion

Code injection

2017-09-05 06:29:00

nvd

CVE-2017-14140

2017-09-05 06:29:00

ubuntucve

CVE-2017-14140

2017-09-05 00:00:00

nessus

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3444-2)

2017-10-11 00:00:00

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3444-1)

2017-10-11 00:00:00

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4025)

2018-02-08 00:00:00

ubuntu

Linux kernel (Xenial HWE) vulnerabilities

2017-10-10 00:00:00

Linux kernel vulnerabilities

2017-10-10 00:00:00

Linux kernel (Trusty HWE) vulnerabilities

2018-02-23 00:00:00

openvas

Ubuntu: Security Advisory (USN-3444-1)

2017-10-11 00:00:00

Ubuntu: Security Advisory (USN-3444-2)

2017-10-11 00:00:00

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2017-1245)

2020-01-23 00:00:00

cloudfoundry

USN-3444-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

2017-11-01 00:00:00

photon

Important Photon OS Security Update - PHSA-2017-0066

2017-09-06 00:00:00

oraclelinux

Unbreakable Enterprise kernel security update

2018-02-07 00:00:00

Unbreakable Enterprise kernel security update

2018-05-02 00:00:00

Unbreakable Enterprise kernel security update

2018-04-18 00:00:00

suse

Security update for the Linux Kernel (important)

2017-10-10 18:13:58

Security update for the Linux Kernel (important)

2017-12-11 21:09:33

Security update for the Linux Kernel (important)

2017-10-30 19:23:22

kitploit

Vision2 - Nmap's XML result parse and NVD's CPE correlation to search CVE

2017-09-08 13:30:00

osv

linux - security update

2017-09-20 00:00:00

linux - security update

2017-09-19 00:00:00

debian

[SECURITY] [DSA 3981-1] linux security update

2017-09-20 21:35:52

[SECURITY] [DSA 3981-1] linux security update

2017-09-20 21:35:52

[SECURITY] [DLA 1099-1] linux security update

2017-09-20 17:47:37

ibm

Security Bulletin: Multiple vulnerabilities affect Intel® Manycore Platform Software Stack (Intel® MPSS) for Linux and Windows

2019-02-25 20:40:02

Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities

2018-07-25 14:35:46

Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM

2018-07-06 23:49:08

redhat

(RHSA-2018:0676) Important: kernel-rt security, bug fix, and enhancement update

2018-04-10 04:58:26

(RHSA-2018:1062) Important: kernel security, bug fix, and enhancement update

2018-04-10 08:33:10

centos

kernel security update

2018-04-27 05:53:39

androidsecurity

Pixel&hairsp;/&hairsp;Nexus Security Bulletin—January 2018

2018-01-02 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for RH:CVE-2017-14140