CVE-2014-4014

Name of the Vulnerable Software and Affected Versions openSUSE kernel-default (affected versions not specified) openSUSE kernel-source (affected versions not specified) openSUSE kernel-debug (affected versions not specified) openSUSE kernel-desktop (affected versions not specified) openSUSE kernel-vanilla (affected versions not specified) openSUSE kernel-pae (affected versions not specified) openSUSE kernel-ec2 (affected versions not specified) openSUSE kernel-trace (affected versions not specified) openSUSE kernel-xen (affected versions not specified) openSUSE kernel-default-devel (affected versions not specified) openSUSE kernel-desktop-devel (affected versions not specified) openSUSE kernel-pae-devel (affected versions not specified) openSUSE kernel-vanilla-devel (affected versions not specified) openSUSE kernel-ec2-devel (affected versions not specified) openSUSE kernel-trace-devel (affected versions not specified) openSUSE kernel-xen-devel (affected versions not specified) openSUSE libipset3 (affected versions not specified) openSUSE ipset (affected versions not specified) openSUSE ipset-kmp-default (affected versions not specified) openSUSE ipset-kmp-pae (affected versions not specified) openSUSE ipset-kmp-xen (affected versions not specified) openSUSE ndiswrapper (affected versions not specified) openSUSE ndiswrapper-kmp-default (affected versions not specified) openSUSE ndiswrapper-kmp-pae (affected versions not specified) openSUSE ndiswrapper-kmp-desktop (affected versions not specified) openSUSE pcfclock (affected versions not specified) openSUSE pcfclock-kmp-default (affected versions not specified) openSUSE pcfclock-kmp-pae (affected versions not specified) openSUSE pcfclock-kmp-desktop (affected versions not specified) openSUSE vhba-kmp-default (affected versions not specified) openSUSE vhba-kmp-pae (affected versions not specified) openSUSE vhba-kmp-xen (affected versions not specified) openSUSE xtables-addons (affected versions not specified) openSUSE xtables-addons-kmp-default (affected versions not specified) openSUSE xtables-addons-kmp-pae (affected versions not specified) openSUSE xtables-addons-kmp-xen (affected versions not specified) openSUSE xtables-addons-kmp-desktop (affected versions not specified) openSUSE iscsitarget (affected versions not specified) openSUSE iscsitarget-kmp-default (affected versions not specified) openSUSE iscsitarget-kmp-pae (affected versions not specified) openSUSE iscsitarget-kmp-xen (affected versions not specified) openSUSE iscsitarget-kmp-desktop (affected versions not specified) openSUSE cloop (affected versions not specified) openSUSE cloop-kmp-default (affected versions not specified) openSUSE cloop-kmp-pae (affected versions not specified) openSUSE cloop-kmp-xen (affected versions not specified) openSUSE cloop-kmp-desktop (affected versions not specified) openSUSE hdjmod (affected versions not specified) openSUSE hdjmod-kmp-default (affected versions not specified) openSUSE hdjmod-kmp-pae (affected versions not specified) openSUSE hdjmod-kmp-xen (affected versions not specified) openSUSE hdjmod-kmp-desktop (affected versions not specified) openSUSE crash (affected versions not specified) openSUSE crash-kmp-default (affected versions not specified) openSUSE crash-kmp-pae (affected versions not specified) openSUSE crash-kmp-xen (affected versions not specified) openSUSE crash-kmp-desktop (affected versions not specified)

Description The Linux kernel has multiple vulnerabilities that can be exploited to compromise the confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. Local users can bypass intended chmod restrictions by creating a user namespace and setting the setgid bit on a file with group ownership of root.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.