2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
10.1%
Array index error in the aio_read_events_ring function in fs/aio.c in the
Linux kernel through 3.15.1 allows local users to obtain sensitive
information from kernel memory via a large head value.
Author | Note |
---|---|
jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.04 preview kernels linux-lts-saucy no longer receives official support |
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=edfbbf388f293d70bf4b7c0bc38774d05e6f711a
bugzilla.redhat.com/show_bug.cgi?id=1094602
github.com/torvalds/linux/commit/edfbbf388f293d70bf4b7c0bc38774d05e6f711a
launchpad.net/bugs/cve/CVE-2014-0206
nvd.nist.gov/vuln/detail/CVE-2014-0206
security-tracker.debian.org/tracker/CVE-2014-0206
ubuntu.com/security/notices/USN-2336-1
ubuntu.com/security/notices/USN-2337-1
www.cve.org/CVERecord?id=CVE-2014-0206