CVE-2014-0069

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 28-02-2014 07:18

Last modified: - 21-09-2022 08:44

Total changes: - 2

Description

The cifs_iovec_write function in fs/cifs/file.c in the Linux kernel through 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory corruption and system crash), or possibly gain privileges via a writev system call with a crafted pointer.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:L/Au:N/C:C/I:C/A:C

Low

Attack complexity

Local

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

7.2

Base score

3.9

10.0

Exploitability score

Impact score

Verification logic

Reference

https://github.com/torvalds/linux/commit/5d81de8e8667da7135d3a32a964087c0faf5483f
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=5d81de8e8667da7135d3a32a964087c0faf5483f
[oss-security] 20140217 CVE-2014-0069 -- kernel: cifs: incorrect handling of bogus user pointers during uncached writes-Mailing List, Third Party Advisory
[linux-cifs] 20140214 [PATCH] cifs: ensure that uncached writes handle unmapped areas correctly-Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=1064253
RHSA-2014:0328-Third Party Advisory
65588-Third Party Advisory, VDB Entry
SUSE-SU-2014:0459-Mailing List, Third Party Advisory

Keywords

CVE-2014-0069

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2014-0069

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures