PT-2014-1006 · Linux+5 · Linux Kernel+5
Matthew Daley
·
Publicado
2014-05-09
·
Atualizado
2020-08-21
·
CVE-2014-1738
CVSS v2.0
4.9
Média
| Vetor | AV:L/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions through 3.14.3
Description
The issue is related to the raw cmd copyout function in drivers/block/floppy.c, which does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call. This allows local users to obtain sensitive information from kernel heap memory by leveraging write access to a /dev/fd device. The problem is due to a lack of input sanitization in the FDRAWCMD ioctl system call, which can lead to information leakage and potentially elevate privileges.
Recommendations
For Linux kernel versions through 3.14.3, update to a version that contains a fix for this issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu