PT-2014-4874 · Linux+4 · Linux Kernel+4

Yaara Rozenblum

Published

2014-03-24

Updated

2023-05-19

CVE-2014-2706

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.13.7

Description A race condition in the mac80211 subsystem allows remote attackers to cause a denial of service (system crash) via network traffic that improperly interacts with the WLAN STA PS STA state, also known as power-save mode. This issue is related to the sta info.c and tx.c files.

Recommendations For Linux kernel versions prior to 3.13.7, update to version 3.13.7 or later to resolve the issue. As a temporary workaround, consider restricting network traffic to minimize the risk of exploitation.

Exploit

Fix

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALT-PU-2014-1355

ALT-PU-2014-1362

CESA-2014_0981

CESA-2014_1023

CVE-2014-2706

RHSA-2014:0557

RHSA-2014:0981

RHSA-2014:1023

RHSA-2014:1101

RHSA-2014_0981

RHSA-2014_1023

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

USN-2221-1

USN-2223-1

USN-2224-1

USN-2225-1

USN-2227-1

USN-2228-1

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2014-4874 · Linux+4 · Linux Kernel+4

CVE-2014-2706

Weakness Enumeration

Related Identifiers

Affected Products

References · 31