CVE-2014-3534
EUVD-2014-352901.08.2014, 11:13
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACE_POKEUSR_AREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a crafted application that makes a ptrace system call.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 𝑥 < 3.2.62 |
| linux | linux_kernel | 3.3 ≤ 𝑥 < 3.4.101 |
| linux | linux_kernel | 3.5 ≤ 𝑥 < 3.10.51 |
| linux | linux_kernel | 3.11 ≤ 𝑥 < 3.12.27 |
| linux | linux_kernel | 3.13 ≤ 𝑥 < 3.14.15 |
| linux | linux_kernel | 3.15 ≤ 𝑥 < 3.15.8 |
| debian | debian_linux | 7.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||||||
| linux-2.6 |
| ||||||||||||
| linux-armadaxp |
| ||||||||||||
| linux-ec2 |
| ||||||||||||
| linux-flo |
| ||||||||||||
| linux-fsl-imx51 |
| ||||||||||||
| linux-goldfish |
| ||||||||||||
| linux-grouper |
| ||||||||||||
| linux-linaro-omap |
| ||||||||||||
| linux-linaro-shared |
| ||||||||||||
| linux-linaro-vexpress |
| ||||||||||||
| linux-lts-quantal |
| ||||||||||||
| linux-lts-raring |
| ||||||||||||
| linux-lts-saucy |
| ||||||||||||
| linux-lts-trusty |
| ||||||||||||
| linux-lts-utopic |
| ||||||||||||
| linux-lts-vivid |
| ||||||||||||
| linux-maguro |
| ||||||||||||
| linux-mako |
| ||||||||||||
| linux-manta |
| ||||||||||||
| linux-mvl-dove |
| ||||||||||||
| linux-qcm-msm |
| ||||||||||||
| linux-raspi2 |
| ||||||||||||
| linux-ti-omap4 |
|
Common Weakness Enumeration
References