UbuntuUSN-2444-1Linux kernel (OMAP4) vulnerabilities
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.733 High
EPSS
Percentile
98.1%
Releases
- Ubuntu 12.04
Packages
- linux-ti-omap4 - Linux kernel for OMAP4
Details
Rabin Vincent, Robert Swiecki, Russell King discovered that the ftrace
subsystem of the Linux kernel does not properly handle private syscall
numbers. A local user could exploit this flaw to cause a denial of service
(OOPS). (CVE-2014-7826)
Rabin Vincent, Robert Swiecki, Russell Kinglaw discovered a flaw in how the
perf subsystem of the Linux kernel handles private systecall numbers. A
local user could exploit this to cause a denial of service (OOPS) or bypass
ASLR protections via a crafted application. (CVE-2014-7825)
A null pointer dereference flaw was discovered in the the Linux kernel’s
SCTP implementation when ASCONF is used. A remote attacker could exploit
this flaw to cause a denial of service (system crash) via a malformed INIT
chunk. (CVE-2014-7841)
A stack buffer overflow was discovered in the ioctl command handling for
the Technotrend/Hauppauge USB DEC devices driver. A local user could
exploit this flaw to cause a denial of service (system crash) or possibly
gain privileges. (CVE-2014-8884)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.04 | noarch | linux-image-3.2.0-1457-omap4 | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | block-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | crypto-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fat-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fs-core-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | fs-secondary-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | input-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | irda-modules-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | kernel-image-3.2.0-1457-omap4-di | < 3.2.0-1457.77 | UNKNOWN |
| Ubuntu | 12.04 | noarch | linux-headers-3.2.0-1457 | < 3.2.0-1457.77 | UNKNOWN |
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.733 High
EPSS
Percentile
98.1%