[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2014-3047 -- Oracle kernel-uek

ID: oval:org.secpod.oval:def:1500611Date: (C)2014-07-28   (M)2024-02-19
Class: PATCHFamily: unix




The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.

Platform:
Oracle Linux 6
Product:
kernel-uek
Reference:
ELSA-2014-3047
CVE-2014-4943
CVE-2014-4699
CVE    2
CVE-2014-4699
CVE-2014-4943
CPE    2
cpe:/o:oracle:linux:6
cpe:/o:oracle:kernel-uek

© SecPod Technologies