CVE-2014-0131
Published at:
-
24-03-2014 05:40
Last modified:
-
21-09-2022 08:44
Total changes:
-
2
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Adjacent
Attack vector
None
Availability
Low
Confidentiality
None
Integrity
-
Privileges required
-
Scope
-
User interaction
2.9
Base score
5.5
2.9
Exploitability score
Impact score
Verification logic
Reference
- https://bugzilla.redhat.com/show_bug.cgi?id=1074589
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1fd819ecb90cc9b822cd84d3056ddba315d3340f
- [netdev] 20140310 [PATCH 0/5] skbuff: fix skb_segment with zero copy skbs-Mailing List, Third Party Advisory
- [netdev] 20140310 [PATCH 5/5] skbuff: skb_segment: orphan frags before copying-Mailing List, Patch, Third Party Advisory
- https://github.com/torvalds/linux/commit/1fd819ecb90cc9b822cd84d3056ddba315d3340f
- [oss-security] 20140310 CVE-2014-0131 -- kernel: net: use-after-free during segmentation with zerocopy-Mailing List, Third Party Advisory
- SUSE-SU-2015:0481-Third Party Advisory
- openSUSE-SU-2015:0566-Third Party Advisory
Keywords