[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ELSA-2014-3106 -- Oracle kernel-uek_dtrace-modules

ID: oval:org.secpod.oval:def:1500864Date: (C)2015-06-17   (M)2024-02-19
Class: PATCHFamily: unix




It was found that the parse_rock_ridge_inode_internal() function of the Linux kernel's ISOFS implementation did not correctly check relocated directories when processing Rock Ridge child link (CL) tags. An attacker with physical access to the system could use a specially crafted ISO image to crash the system or, potentially, escalate their privileges on the system.

Platform:
Oracle Linux 7
Product:
kernel-uek
dtrace-modules 3.x
Reference:
ELSA-2014-3106
CVE-2014-5471
CVE-2014-5472
CVE-2014-9090
CVE-2014-9322
CVE    4
CVE-2014-9322
CVE-2014-5472
CVE-2014-5471
CVE-2014-9090
...
CPE    3
cpe:/a:dtrace-modules:dtrace-modules
cpe:/o:oracle:kernel-uek
cpe:/o:oracle:linux:7

© SecPod Technologies