Уязвимость CVE-2014-4699: Информация

Описание

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.

URL: https://nvd.nist.gov/vuln/detail/CVE-2014-4699

Опубликовано: 9 июля 2014 г.

Изменено: 16 февраля 2024 г.

Идентификатор типа ошибки: CWE-362

Исправленные пакеты

Имя пакета	Ветка	Исправлено в версии	Версия в репозитории	Errata ID	№ Задания	Состояние
kernel-image-std-def	sisyphus	3.12.24-alt2	6.1.87-alt1	ALT-PU-2014-1904-1	123975	Исправлено
kernel-image-std-def	p10	3.12.24-alt2	5.10.213-alt1	ALT-PU-2014-1904-1	123975	Исправлено
kernel-image-std-def	p9	3.12.24-alt2	5.4.274-alt1	ALT-PU-2014-1904-1	123975	Исправлено
kernel-image-std-def	c9f2	3.12.24-alt2	5.10.214-alt0.c9f.2	ALT-PU-2014-1904-1	123975	Исправлено
kernel-image-std-def	c7	3.12.24-alt2	4.4.277-alt0.M70C.1	ALT-PU-2014-1924-1	124705	Исправлено
kernel-image-std-pae	c9f2	3.12.24-alt2	4.19.72-alt1	ALT-PU-2014-1909-1	123977	Исправлено
kernel-image-std-pae	c7	3.12.24-alt2	3.14.28-alt1	ALT-PU-2014-1925-1	124704	Исправлено
kernel-image-un-def	sisyphus	3.15.4-alt1	6.6.28-alt1	ALT-PU-2014-1903-1	123898	Исправлено
kernel-image-un-def	p10	3.15.4-alt1	6.1.85-alt1	ALT-PU-2014-1903-1	123898	Исправлено
kernel-image-un-def	p9	3.15.4-alt1	5.10.215-alt1	ALT-PU-2014-1903-1	123898	Исправлено
kernel-image-un-def	c10f1	3.15.4-alt1	6.1.85-alt0.c10f.1	ALT-PU-2014-1903-1	123898	Исправлено
kernel-image-un-def	c9f2	3.15.4-alt1	5.10.29-alt2	ALT-PU-2014-1903-1	123898	Исправлено
kernel-image-un-def	c7	3.15.5-alt1	4.9.277-alt0.M70C.1	ALT-PU-2014-1923-1	124706	Исправлено
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Исправлено
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Исправлено
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Исправлено
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Исправлено

Ссылки на рекомендации, решения и инструменты

Ссылка	Ресурс
[oss-security] 20140704 CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
[oss-security] 20140708 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.4	Release Notes Vendor Advisory
[oss-security] 20140705 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1115927	Issue Tracking Patch Third Party Advisory
[oss-security] 20140708 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
https://github.com/torvalds/linux/commit/b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43a	Patch Third Party Advisory
USN-2269-1	Third Party Advisory
USN-2268-1	Third Party Advisory
USN-2274-1	Third Party Advisory
USN-2273-1	Third Party Advisory
USN-2272-1	Third Party Advisory
USN-2267-1	Third Party Advisory
USN-2271-1	Third Party Advisory
DSA-2972	Third Party Advisory
USN-2266-1	Third Party Advisory
USN-2270-1	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.47	Release Notes Vendor Advisory
59639	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.11	Release Notes Vendor Advisory
59633	Third Party Advisory
59654	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.97	Release Notes Vendor Advisory
http://linux.oracle.com/errata/ELSA-2014-0924.html	Third Party Advisory
http://linux.oracle.com/errata/ELSA-2014-3047.html	Third Party Advisory
http://linux.oracle.com/errata/ELSA-2014-3048.html	Third Party Advisory
http://packetstormsecurity.com/files/127573/Linux-Kernel-ptrace-sysret-Local-Privilege-Escalation.html	Exploit Third Party Advisory VDB Entry
34134	Exploit Third Party Advisory VDB Entry
60393	Third Party Advisory
108754	Broken Link
60220	Third Party Advisory
60380	Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43a	Broken Link Third Party Advisory

Подверженные конфигурации:
1. Конфигурация 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.15
  End excliding
  3.15.4
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.13
  End excliding
  3.14.11
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.11
  End excliding
  3.12.25
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.5
  End excliding
  3.10.47
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.3
  End excliding
  3.4.97
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  2.6.17
  End excliding
  3.2.61
  
  Конфигурация 2
  cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  
  Конфигурация 3
  cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

Версия: v24.4.2

Наверх

Уязвимость CVE-2014-4699: Информация

Описание

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

Конфигурация 1

Конфигурация 2

Конфигурация 3