CVE-2014-8173

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.13

Description The issue arises from the pmd none or trans huge or clear bad function in include/asm-generic/pgtable.h, which does not properly determine whether a Page Middle Directory (PMD) entry is a transparent huge-table entry on NUMA systems. This allows local users to cause a denial of service, resulting in a NULL pointer dereference and system crash, or possibly have unspecified other impact via a crafted MADV WILLNEED madvise system call that leverages the absence of a page-table lock.

Recommendations For Linux kernel versions prior to 3.13, update to version 3.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the MADV WILLNEED madvise system call to minimize the risk of exploitation.