Vulnerability CVE-2014-3145: Information
Description
The BPF_S_ANC_NLATTR_NEST extension implementation in the sk_run_filter function in net/core/filter.c in the Linux kernel through 3.14.3 uses the reverse order in a certain subtraction, which allows local users to cause a denial of service (over-read and system crash) via crafted BPF instructions. NOTE: the affected code was moved to the __skb_get_nlattr_nest function before the vulnerability was announced.
Severity: MEDIUM (4.9)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
kernel-image-std-def | sisyphus | 3.14.17-alt1 | 6.1.87-alt1 | ALT-PU-2014-2064-1 | 128797 | Fixed |
kernel-image-std-def | p10 | 3.14.17-alt1 | 5.10.213-alt1 | ALT-PU-2014-2064-1 | 128797 | Fixed |
kernel-image-std-def | p9 | 3.14.17-alt1 | 5.4.274-alt1 | ALT-PU-2014-2064-1 | 128797 | Fixed |
kernel-image-std-def | c9f2 | 3.14.17-alt1 | 5.10.214-alt0.c9f.2 | ALT-PU-2014-2064-1 | 128797 | Fixed |
kernel-image-std-def | c7 | 3.14.18-alt1 | 4.4.277-alt0.M70C.1 | ALT-PU-2014-2116-1 | 129349 | Fixed |
kernel-image-un-def | sisyphus | 3.14.4-alt1 | 6.6.28-alt1 | ALT-PU-2014-1634-1 | 119753 | Fixed |
kernel-image-un-def | p10 | 3.14.4-alt1 | 6.1.85-alt1 | ALT-PU-2014-1634-1 | 119753 | Fixed |
kernel-image-un-def | p9 | 3.14.4-alt1 | 5.10.215-alt1 | ALT-PU-2014-1634-1 | 119753 | Fixed |
kernel-image-un-def | c10f1 | 3.14.4-alt1 | 6.1.85-alt0.c10f.1 | ALT-PU-2014-1634-1 | 119753 | Fixed |
kernel-image-un-def | c9f2 | 3.14.4-alt1 | 5.10.29-alt2 | ALT-PU-2014-1634-1 | 119753 | Fixed |
kernel-image-un-def | c7 | 3.14.4-alt1 | 4.9.277-alt0.M70C.1 | ALT-PU-2014-1638-1 | 119815 | Fixed |
usbip | sisyphus | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-1798-1 | 320453 | Fixed |
usbip | sisyphus_e2k | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-7452-1 | - | Fixed |
usbip | p10 | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-1903-1 | 320461 | Fixed |
usbip | p10_e2k | 5.10-alt1 | 5.10-alt1 | ALT-PU-2023-7498-1 | - | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://github.com/torvalds/linux/commit/05ab8f2647e4221cbdb3856dd7d32bd5407316b3 |
|
[oss-security] 20140509 Re: CVE request Linux kernel: filter: prevent nla extensions to peek beyond the end of the message |
|
58990 |
|
67321 |
|
59597 |
|
60613 |
|
59311 |
|
http://linux.oracle.com/errata/ELSA-2014-3052.html |
|
https://source.android.com/security/bulletin/2017-04-01 |
|
1038201 |
|
USN-2264-1 |
|
USN-2263-1 |
|
USN-2262-1 |
|
USN-2261-1 |
|
USN-2259-1 |
|
USN-2252-1 |
|
USN-2251-1 |
|
DSA-2949 |
|
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=05ab8f2647e4221cbdb3856dd7d32bd5407316b3 |