Vulnerability CVE-2014-0196: Information

Description

The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings.

URL: https://nvd.nist.gov/vuln/detail/CVE-2014-0196
Published: May 7, 2014
Modified: Feb. 9, 2024
Error type identifier: CWE-362

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
kernel-image-std-defsisyphus3.12.18-alt26.1.91-alt1ALT-PU-2014-1599-1119334Fixed
kernel-image-std-defp103.12.18-alt25.10.216-alt1ALT-PU-2014-1599-1119334Fixed
kernel-image-std-defp93.12.18-alt25.4.275-alt1ALT-PU-2014-1599-1119334Fixed
kernel-image-std-defc9f23.12.18-alt25.10.214-alt0.c9f.2ALT-PU-2014-1599-1119334Fixed
kernel-image-std-defc73.12.19-alt24.4.277-alt0.M70C.1ALT-PU-2014-1625-1119638Fixed
kernel-image-std-paec9f23.12.18-alt24.19.72-alt1ALT-PU-2014-1598-1119335Fixed
kernel-image-std-paec73.12.19-alt23.14.28-alt1ALT-PU-2014-1626-1119638Fixed
kernel-image-un-defsisyphus3.14.4-alt16.6.31-alt1ALT-PU-2014-1634-1119753Fixed
kernel-image-un-defp103.14.4-alt16.1.85-alt1ALT-PU-2014-1634-1119753Fixed
kernel-image-un-defp93.14.4-alt15.10.216-alt2ALT-PU-2014-1634-1119753Fixed
kernel-image-un-defc10f13.14.4-alt16.1.85-alt0.c10f.1ALT-PU-2014-1634-1119753Fixed
kernel-image-un-defc9f23.14.4-alt15.10.29-alt2ALT-PU-2014-1634-1119753Fixed
kernel-image-un-defc73.14.4-alt14.9.277-alt0.M70C.1ALT-PU-2014-1638-1119815Fixed
usbipsisyphus5.10-alt15.10-alt1ALT-PU-2023-1798-1320453Fixed
usbipsisyphus_e2k5.10-alt15.10-alt1ALT-PU-2023-7452-1-Fixed
usbipp105.10-alt15.10-alt1ALT-PU-2023-1903-1320461Fixed
usbipp10_e2k5.10-alt15.10-alt1ALT-PU-2023-7498-1-Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1094232
  • Issue Tracking
  • Patch
  • Third Party Advisory
[oss-security] 20140429 CVE-2014-0196: Linux kernel pty layer race condition memory corruption
  • Mailing List
  • Third Party Advisory
http://bugzilla.novell.com/show_bug.cgi?id=875690
  • Issue Tracking
  • Permissions Required
  • Third Party Advisory
http://pastebin.com/raw.php?i=yTSFUBgZ
  • Exploit
  • Mailing List
  • Third Party Advisory
https://github.com/torvalds/linux/commit/4291086b1f081b869c6d79e5b7441633dc3ace00
  • Exploit
  • Patch
  • Third Party Advisory
USN-2199-1
  • Third Party Advisory
DSA-2928
  • Third Party Advisory
SUSE-SU-2014:0683
  • Mailing List
  • Third Party Advisory
USN-2201-1
  • Third Party Advisory
RHSA-2014:0512
  • Third Party Advisory
DSA-2926
  • Third Party Advisory
USN-2202-1
  • Third Party Advisory
USN-2196-1
  • Third Party Advisory
USN-2198-1
  • Third Party Advisory
SUSE-SU-2014:0667
  • Mailing List
  • Third Party Advisory
USN-2204-1
  • Third Party Advisory
USN-2197-1
  • Third Party Advisory
USN-2200-1
  • Third Party Advisory
USN-2203-1
  • Third Party Advisory
59599
  • Broken Link
http://linux.oracle.com/errata/ELSA-2014-0771.html
  • Third Party Advisory
59262
  • Broken Link
http://source.android.com/security/bulletin/2016-07-01.html
  • Not Applicable
106646
  • Broken Link
33516
  • Exploit
  • Third Party Advisory
  • VDB Entry
http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15319.html
  • Third Party Advisory
59218
  • Not Applicable
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4291086b1f081b869c6d79e5b7441633dc3ace00
  • Broken Link

    1. Configuration 1

      cpe:2.3:o:linux:linux_kernel:2.6.31:rc4:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc6:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc9:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc5:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc7:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc8:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:rc3:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:2.6.31:-:*:*:*:*:*:*
      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
      Start including
      3.13
      End excliding
      3.14.4
      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
      Start including
      3.11
      End excliding
      3.12.20
      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
      Start including
      3.5
      End excliding
      3.10.40
      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
      Start including
      3.3
      End excliding
      3.4.91
      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
      Start excluding
      2.6.31
      End excliding
      3.2.59

      Configuration 2

      cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
      cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

      Configuration 3

      cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_server_eus:6.3:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_eus:6.4:*:*:*:*:*:*:*

      Configuration 4

      cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp3:*:*:*:vmware:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp3:*:*:*:-:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3:*:*:*:-:*:*
      cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension:11:sp3:*:*:*:*:*:*

      Configuration 5

      cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*

      Configuration 6

      cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

      Configuration 7

      cpe:2.3:a:f5:big-iq_application_delivery_controller:4.5.0:*:*:*:*:*:*:*
      cpe:2.3:a:f5:big-iq_centralized_management:4.6.0:*:*:*:*:*:*:*
      cpe:2.3:a:f5:big-iq_cloud_and_orchestration:1.0.0:*:*:*:*:*:*:*
      cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
      Start including
      11.4.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
      Start including
      11.3.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*
      Start including
      11.3.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-iq_security:*:*:*:*:*:*:*:*
      Start including
      4.0.0
      End including
      4.5.0
      cpe:2.3:a:f5:big-iq_device:*:*:*:*:*:*:*:*
      Start including
      4.2.0
      End including
      4.5.0
      cpe:2.3:a:f5:big-iq_cloud:*:*:*:*:*:*:*:*
      Start including
      4.0.0
      End including
      4.5.0
      cpe:2.3:a:f5:enterprise_manager:*:*:*:*:*:*:*:*
      Start including
      3.1.0
      End including
      3.1.1
      cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.3.0
      cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.5.1
      cpe:2.3:a:f5:big-ip_protocol_security_module:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.4.1
      cpe:2.3:a:f5:big-ip_wan_optimization_manager:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.3.0
      cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*
      Start including
      11.1.0
      End including
      11.3.0
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.1
Back to top