CVE-2014-2889

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.1.8

Description The issue is caused by an off-by-one error in the bpf jit compile function. This error can lead to a denial of service, resulting in a system crash, or potentially allow local users to gain privileges. The error occurs when BPF JIT is enabled and a long jump is executed after a conditional jump.

Recommendations For Linux kernel versions prior to 3.1.8, update to version 3.1.8 or later to resolve the issue. As a temporary workaround, consider disabling BPF JIT to minimize the risk of exploitation.