Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-4655
HistoryJul 03, 2014 - 4:22 a.m.

CVE-2014-4655

2014-07-0304:22:00
CWE-190
[email protected]
web.nvd.nist.gov
61
cve-2014-4655
sound
alsa
linux kernel
denial of service
integer overflow
nvd

5.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON

The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the user_ctl_count value, which allows local users to cause a denial of service (integer overflow and limit bypass) by leveraging /dev/snd/controlCX access for a large number of SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl calls.

Related

veracode 4
ubuntucve 1
prion 1
debiancve 1
redhat 3
oraclelinux 5
nessus 30
openvas 27
ubuntu 6
securityvulns 2
centos 2
osv 1
suse 9
debian 1
androidsecurity 1
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:08:28
Denial Of Service (DoS)
2019-05-02 05:12:39
Denial Of Service (DoS)
2019-05-02 05:12:40
ubuntucve
ubuntucve
CVE-2014-4655
2014-07-03 00:00:00
prion
prion
Integer overflow
2014-07-03 04:22:00
debiancve
debiancve
CVE-2014-4655
2014-07-03 04:22:00
redhat
redhat
(RHSA-2014:1083) Important: kernel-rt security and bug fix update
2014-08-20 00:00:00
(RHSA-2014:1392) Important: kernel security, bug fix, and enhancement update
2014-10-14 00:00:00
(RHSA-2014:1971) Important: kernel security and bug fix update
2014-12-09 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel Security update
2014-10-17 00:00:00
Unbreakable Enterprise kernel security update
2014-10-17 00:00:00
Unbreakable Enterprise kernel security update
2014-10-17 00:00:00
nessus
nessus
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2014-3083)
2014-10-20 00:00:00
RHEL 6 : MRG (RHSA-2014:1083)
2014-08-21 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2014-3081)
2014-10-20 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-3083)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-3081)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-3082)
2015-10-06 00:00:00
ubuntu
ubuntu
Linux kernel (EC2) vulnerabilities
2014-09-02 00:00:00
Linux kernel vulnerabilities
2014-09-02 00:00:00
Linux kernel (OMAP4) vulnerabilities
2014-09-02 00:00:00
securityvulns
securityvulns
[USN-2332-1] Linux kernel vulnerabilities
2014-09-03 00:00:00
Linux kernel multiple security vulnerabilities
2014-09-29 00:00:00
centos
centos
kernel, perf, python security update
2014-10-20 18:09:23
kernel, perf, python security update
2014-12-10 12:48:13
osv
osv
linux-2.6 - security update
2014-12-09 00:00:00
suse
suse
kernel: security and bugfix update (important)
2014-08-11 12:04:19
kernel: security and bugfix update (important)
2014-08-01 15:04:21
Security update for the Linux Kernel (important)
2014-09-16 19:04:20
debian
debian
[SECURITY] [DLA 103-1] linux-2.6 security update
2014-12-09 01:05:55
androidsecurity
androidsecurity
Android Security Bulletinβ€”September 2016
2016-09-06 00:00:00

5.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

9.3%

JSON
Related for CVE-2014-4655
veracode4ubuntucve1prion1debiancve1redhat3oraclelinux5nessus30openvas27ubuntu6securityvulns2centos2osv1suse9debian1androidsecurity1