Lucene search

[email protected]CVE-2014-7843

HistoryNov 30, 2014 - 1:59 a.m.

CVE-2014-7843

2014-11-3001:59:00

CWE-17

[email protected]

web.nvd.nist.gov

cve-2014-7843

linux kernel

arm64

denial of service

nvd

6.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The __clear_user function in arch/arm64/lib/clear_user.S in the Linux kernel before 3.17.4 on the ARM64 platform allows local users to cause a denial of service (system crash) by reading one byte beyond a /dev/zero page boundary.

CPENameOperatorVersion
linux:linux_kernellinux linux kernelle3.17.3

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	le	3.17.3

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=97fc15436b36ee3956efad83e22a557991f7d19d

secunia.com/advisories/62305

www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4

www.openwall.com/lists/oss-security/2014/11/13/5

www.securityfocus.com/bid/71082

bugzilla.redhat.com/show_bug.cgi?id=1163744

github.com/torvalds/linux/commit/97fc15436b36ee3956efad83e22a557991f7d19d

6.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2014-7843

prion1 ubuntucve1 f51 debiancve1 openvas15 nessus8 ubuntu4 fedora10 securityvulns1