Ubuntu.comUB:CVE-2014-2673CVE-2014-2673
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
5.3%
The arch_dup_task_struct function in the Transactional Memory ™
implementation in arch/powerpc/kernel/process.c in the Linux kernel before
3.13.7 on the powerpc platform does not properly interact with the clone
and fork system calls, which allows local users to cause a denial of
service (Program Check and system crash) via certain instructions that are
executed with the processor in the Transactional state.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels |
References
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=621b5060e823301d0cba4cb52a7ee3491922d291
launchpad.net/bugs/cve/CVE-2014-2673
nvd.nist.gov/vuln/detail/CVE-2014-2673
security-tracker.debian.org/tracker/CVE-2014-2673
ubuntu.com/security/notices/USN-2225-1
ubuntu.com/security/notices/USN-2228-1
www.cve.org/CVERecord?id=CVE-2014-2673
Related
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
5.3%