CVE-2014-3153

2014-06-07T14:55:00
ID CVE-2014-3153
Type cve
Reporter security@google.com
Modified 2021-02-08T16:25:00

Description

The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.