Linux kernel vulnerabilities

2014-09-2300:00:00

ubuntu.com

7.1 High

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.025 Low

EPSS

Percentile

90.0%

JSON

Releases

Ubuntu 14.04 ESM

Packages

linux - Linux kernel

Details

Jack Morgenstein reported a flaw in the page handling of the KVM (Kerenl
Virtual Machine) subsystem in the Linux kernel. A guest OS user could
exploit this flaw to cause a denial of service (host OS memory corruption)
or possibly have other unspecified impact on the host OS. (CVE-2014-3601)

Jason Gunthorpe reported a flaw with SCTP authentication in the Linux
kernel. A remote attacker could exploit this flaw to cause a denial of
service (NULL pointer dereference and OOPS). (CVE-2014-5077)

Chris Evans reported an flaw in the Linux kernel’s handling of iso9660
(compact disk filesystem) images. An attacker who can mount a custom
iso9660 image either via a CD/DVD drive or a loopback mount could cause a
denial of service (system crash or reboot). (CVE-2014-5471)

Chris Evans reported an flaw in the Linux kernel’s handling of iso9660
(compact disk filesystem) images. An attacker who can mount a custom
iso9660 image, with a self-referential CL entry, either via a CD/DVD drive
or a loopback mount could cause a denial of service (unkillable mount
process). (CVE-2014-5472)

OSVersionArchitecturePackageVersionFilename
Ubuntu14.04noarchlinux-image-3.13.0-36-generic< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchblock-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchcrypto-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfat-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfb-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfirewire-core-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfloppy-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfs-core-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchfs-secondary-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN
Ubuntu14.04noarchinput-modules-3.13.0-36-generic-di< 3.13.0-36.63UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	14.04	noarch	linux-image-3.13.0-36-generic	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	block-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	crypto-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	fat-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	fb-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	firewire-core-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	floppy-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	fs-core-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	fs-secondary-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN
Ubuntu	14.04	noarch	input-modules-3.13.0-36-generic-di	< 3.13.0-36.63	UNKNOWN