Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-3917
HistoryJun 05, 2014 - 5:55 p.m.

CVE-2014-3917

2014-06-0517:55:07
CWE-200
[email protected]
web.nvd.nist.gov
105
cve-2014-3917
linux kernel
auditsc.c
config_auditsyscall
syscall rules
local users
kernel memory
denial of service
oops
nvd

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:N/A:P

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.

Affected configurations

NVD
Node
suselinux_enterprise_desktopMatch10.0sp4lts
Node
redhatenterprise_linuxMatch5
OR
redhatenterprise_linuxMatch6.0
OR
redhatenterprise_mrgMatch2.0
Node
linuxlinux_kernelRange3.14.5
OR
linuxlinux_kernelMatch3.14-
OR
linuxlinux_kernelMatch3.14rc1
OR
linuxlinux_kernelMatch3.14rc2
OR
linuxlinux_kernelMatch3.14rc3
OR
linuxlinux_kernelMatch3.14rc4
OR
linuxlinux_kernelMatch3.14rc5
OR
linuxlinux_kernelMatch3.14rc6
OR
linuxlinux_kernelMatch3.14rc7
OR
linuxlinux_kernelMatch3.14rc8
OR
linuxlinux_kernelMatch3.14.1
OR
linuxlinux_kernelMatch3.14.2
OR
linuxlinux_kernelMatch3.14.3
OR
linuxlinux_kernelMatch3.14.4

Related

oraclelinux 7
nessus 39
openvas 73
ubuntucve 1
securityvulns 2
altlinux 1
nvd 1
ubuntu 10
redhat 5
prion 1
centos 3
cvelist 1
debiancve 1
f5 2
mageia 8
veracode 7
osv 1
suse 9
fedora 27
oraclelinux
oraclelinux
kernel security and bug fix update
2014-09-04 00:00:00
Unbreakable Enterprise kernel security update
2014-09-10 00:00:00
unbreakable enterprise kernel security bug fix update
2014-09-10 00:00:00
nessus
nessus
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2014-3072)
2014-09-11 00:00:00
CentOS 5 : kernel (CESA-2014:1143)
2014-09-05 00:00:00
Oracle Linux 5 : ELSA-2014-1143-1: / kernel (ELSA-2014-11431)
2023-09-07 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2014:1281 centos7
2014-09-24 00:00:00
Ubuntu: Security Advisory (USN-2313-1)
2014-08-14 00:00:00
Oracle: Security Advisory (ELSA-2014-1281)
2015-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2014-3917
2014-06-05 00:00:00
securityvulns
securityvulns
Linux syscall auditing DoS
2014-06-13 00:00:00
[USN-2289-1] Linux kernel vulnerabilities
2014-07-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt24
2014-06-20 00:00:00
nvd
nvd
CVE-2014-3917
2014-06-05 17:55:07
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerability
2014-08-13 00:00:00
Linux kernel vulnerability
2014-08-13 00:00:00
Linux kernel (EC2) vulnerabilities
2014-07-16 00:00:00
redhat
redhat
(RHSA-2014:1143) Moderate: kernel security and bug fix update
2014-09-03 00:00:00
(RHSA-2014:1281) Moderate: kernel security and bug fix update
2014-09-22 00:00:00
(RHSA-2014:1167) Important: kernel security and bug fix update
2014-09-09 00:00:00
prion
prion
Denial of service
2014-06-05 17:55:00
centos
centos
kernel, perf, python security update
2014-09-23 05:23:08
kernel security update
2014-09-04 07:18:06
kernel, perf, python security update
2014-09-09 23:10:17
cvelist
cvelist
CVE-2014-3917
2014-06-05 17:00:00
debiancve
debiancve
CVE-2014-3917
2014-06-05 17:55:07
f5
f5
SOL15680 - Linux kernel vulnerabilities CVE-2014-3917, CVE-2014-0205 and CVE-2014-4667
2014-10-09 00:00:00
K15680 : Linux kernel vulnerabilities CVE-2014-3917, CVE-2014-0205 and CVE-2014-4667
2015-09-17 00:00:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities.
2014-06-19 00:50:01
Updated kernel packages fixes security vulnerabilities
2014-06-23 01:13:23
Updated kernel-linus package fixes security vulnerabilities
2014-08-18 13:14:56
veracode
veracode
Privilege Escalation
2019-05-02 05:03:36
Information Disclosure
2019-05-02 05:03:36
Information Disclosure
2019-05-02 05:03:36
osv
osv
linux-2.6 - security update
2014-07-12 00:00:00
suse
suse
kernel: security and bugfix update (important)
2014-08-11 12:04:19
kernel: security and bugfix update (important)
2014-08-01 15:04:21
Security update for the Linux Kernel (important)
2014-09-16 19:04:20
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.14.6-200.fc20
2014-06-11 16:31:10
[SECURITY] Fedora 20 Update: kernel-3.14.5-200.fc20
2014-06-05 21:52:16
[SECURITY] Fedora 20 Update: kernel-3.14.8-200.fc20
2014-06-18 22:25:48

3.3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:N/A:P

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2014-3917
oraclelinux7nessus39openvas73ubuntucve1securityvulns2altlinux1nvd1ubuntu10redhat5prion1centos3cvelist1debiancve1f52mageia8veracode7osv1suse9fedora27