CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
82.3%
Updated kernel packages fixes security vulnerabilities. The kernel has been updated to the upstream 3.12.21 longterm kernel, and fixes the following security issues: media-device: fix infoleak in ioctl media_enum_entities() (CVE-2014-1739) The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification. (CVE-2014-3153) kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number. To avoid this and other issues CONFIG_AUDITSYSCALL has been disabled. (CVE-2014-3917) Other changes: iwlwifi: mvm: disable beacon filtering ALSA: hda - Fix onboard audio on Intel H97/Z97 chipsets For other upstream changes, see the referenced changelog.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | kernel | < 3.12.21-2 | kernel-3.12.21-2.mga4 |
Mageia | 4 | noarch | kernel-userspace-headers | < 3.12.21-2 | kernel-userspace-headers-3.12.21-2.mga4 |
Mageia | 4 | noarch | kmod-vboxadditions | < 4.3.10-7 | kmod-vboxadditions-4.3.10-7.mga4 |
Mageia | 4 | noarch | kmod-virtualbox | < 4.3.10-7 | kmod-virtualbox-4.3.10-7.mga4 |
Mageia | 4 | noarch | kmod-xtables-addons | < 2.3-47 | kmod-xtables-addons-2.3-47.mga4 |
Mageia | 4 | noarch | kmod-broadcom-wl | < 6.30.223.141-32 | kmod-broadcom-wl-6.30.223.141-32.mga4.nonfree |
Mageia | 4 | noarch | kmod-nvidia173 | < 173.14.39-17 | kmod-nvidia173-173.14.39-17.mga4.nonfree |
Mageia | 4 | noarch | kmod-nvidia304 | < 304.119-12 | kmod-nvidia304-304.119-12.mga4.nonfree |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
82.3%