CVE-2014-4699

2014-07-09T11:07:00
ID CVE-2014-4699
Type cve
Reporter cve@mitre.org
Modified 2014-08-01T05:10:00

Description

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.