CVE-2014-9940

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.19

Description The issue is related to the regulator ena gpio free function in drivers/regulator/core.c, which allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted application. This is due to a use-after-free error, where memory is accessed after it has been freed. The exploitation of this issue can lead to privilege escalation or a denial of service.

Recommendations For Linux kernel versions prior to 3.19, update to version 3.19 or later to resolve the issue. As a temporary workaround, consider restricting access to the regulator ena gpio free function to minimize the risk of exploitation.