Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-3940
HistoryJun 05, 2014 - 12:00 a.m.

CVE-2014-3940

2014-06-0500:00:00
ubuntu.com
ubuntu.com
8

4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The Linux kernel through 3.14.5 does not properly consider the presence of
hugetlb entries, which allows local users to cause a denial of service
(memory corruption or system crash) by accessing certain memory locations,
as demonstrated by triggering a race condition via numa_maps read
operations during hugepage migration, related to fs/proc/task_mmu.c and
mm/mempolicy.c.

Bugs

Notes

Author Note
jdstrand android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.04 preview kernels
OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchlinux< 3.13.0-32.57UNKNOWN
ubuntu12.04noarchlinux-lts-trusty< 3.13.0-32.57~precise1UNKNOWN

Related

prion 1
securityvulns 2
cve 1
f5 2
debiancve 1
nessus 16
openvas 38
ubuntu 2
veracode 12
centos 2
redhat 3
oraclelinux 2
fedora 30
prion
prion
Race condition
2014-06-05 17:55:00
securityvulns
securityvulns
[oss-security] CVE-2014-3940 - Linux kernel - missing check during hugepage migration
2014-06-17 00:00:00
Linux kernel multiple security vulnerabilities
2014-07-21 00:00:00
cve
cve
CVE-2014-3940
2014-06-05 17:55:00
f5
f5
K15685 : Linux kernel vulnerability CVE-2014-3940
2015-10-06 00:00:00
SOL15685 - Linux kernel vulnerability CVE-2014-3940
2014-10-15 00:00:00
debiancve
debiancve
CVE-2014-3940
2014-06-05 17:55:00
nessus
nessus
Fedora 20 : kernel-3.14.6-200.fc20 (2014-7128)
2014-06-12 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (SOL15685)
2014-10-16 00:00:00
Fedora 19 : kernel-3.14.7-100.fc19 (2014-7320)
2014-06-17 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2288-1)
2014-07-21 00:00:00
Ubuntu: Security Advisory (USN-2290-1)
2014-07-21 00:00:00
RedHat Update for kernel RHSA-2015:1272-01
2015-07-23 00:00:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2014-07-17 00:00:00
Linux kernel vulnerabilities
2014-07-17 00:00:00
veracode
veracode
Privilege Escalation
2019-05-02 05:40:59
Buffer Overflow
2019-05-02 05:40:58
Privilege Escalation
2019-05-02 05:40:58
centos
centos
kernel, perf, python security update
2015-07-26 14:10:53
kernel, perf, python security update
2015-03-17 13:28:28
redhat
redhat
(RHSA-2015:1272) Moderate: kernel security, bug fix, and enhancement update
2015-07-22 00:00:00
(RHSA-2014:0913) Important: kernel-rt security update
2014-07-22 00:00:00
(RHSA-2015:0290) Important: kernel security, bug fix, and enhancement update
2015-03-05 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2015-07-28 00:00:00
kernel security, bug fix, and enhancement update
2015-03-11 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.14.6-200.fc20
2014-06-11 16:31:10
[SECURITY] Fedora 20 Update: kernel-3.14.8-200.fc20
2014-06-18 22:25:48
[SECURITY] Fedora 20 Update: kernel-3.15.4-200.fc20
2014-07-11 02:02:48

4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2014-3940
prion1securityvulns2cve1f52debiancve1nessus16openvas38ubuntu2veracode12centos2redhat3oraclelinux2fedora30