CVE-2014-4508 Information
Description
arch/x86/kernel/entry_32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms when syscall auditing is enabled and the sep CPU feature flag is set allows local users to cause a denial of service (OOPS and system crash) via an invalid syscall number as demonstrated by number 1000.
Reference
http://article.gmane.org/gmane.linux.kernel/1726110 http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html http://openwall.com/lists/oss-security/2014/06/20/1 http://secunia.com/advisories/58964 http://secunia.com/advisories/60564 http://www.openwall.com/lists/oss-security/2014/06/20/10 http://www.openwall.com/lists/oss-security/2020/11/12/3 http://www.securityfocus.com/bid/68126 http://www.ubuntu.com/usn/USN-2334-1 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.61
Share on: