CVE-2014-4027

The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveraging access to a SCSI initiator.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.3 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:S/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 27%
VendorProductVersion
linuxlinux_kernel
𝑥
< 3.14
redhatenterprise_linux
6.0
canonicalubuntu_linux
12.04
f5big-ip_access_policy_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_access_policy_manager
12.0.0
f5big-ip_advanced_firewall_manager
11.3.0 ≤
𝑥
≤ 11.6.0
f5big-ip_advanced_firewall_manager
12.0.0
f5big-ip_analytics
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_analytics
12.0.0
f5big-ip_application_acceleration_manager
11.4.0 ≤
𝑥
≤ 11.6.0
f5big-ip_application_acceleration_manager
12.0.0
f5big-ip_application_security_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_application_security_manager
12.0.0
f5big-ip_domain_name_system
12.0.0
f5big-ip_edge_gateway
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-ip_global_traffic_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_link_controller
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_link_controller
12.0.0
f5big-ip_local_traffic_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_local_traffic_manager
12.0.0
f5big-ip_policy_enforcement_manager
11.3.0 ≤
𝑥
≤ 11.6.0
f5big-ip_policy_enforcement_manager
12.0.0
f5big-ip_protocol_security_module
11.1.0 ≤
𝑥
≤ 11.4.1
f5big-ip_wan_optimization_manager
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-ip_webaccelerator
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-iq_application_delivery_controller
4.5.0
f5big-iq_cloud
4.0.0 ≤
𝑥
≤ 4.5.0
f5big-iq_device
4.2.0 ≤
𝑥
≤ 4.5.0
f5big-iq_security
4.0.0 ≤
𝑥
≤ 4.5.0
f5enterprise_manager
3.0.0 ≤
𝑥
≤ 3.1.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
squeeze
not-affected
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
trixie
6.11.5-1
fixed
sid
6.11.6-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
Fixed 3.13.0-35.62
released
saucy
ignored
precise
Fixed 3.2.0-68.102
released
lucid
not-affected
linux-2.6
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
dne
lucid
dne
linux-armadaxp
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
Fixed 3.2.0-1637.54
released
lucid
dne
linux-aws
zesty
dne
yakkety
dne
xenial
not-affected
trusty
not-affected
precise
dne
linux-ec2
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
dne
lucid
not-affected
linux-flo
zesty
dne
yakkety
ignored
xenial
ignored
wily
ignored
vivid
ignored
utopic
ignored
trusty
ignored
saucy
dne
precise
dne
lucid
dne
linux-fsl-imx51
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
dne
lucid
ignored
linux-gke
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-goldfish
zesty
ignored
yakkety
ignored
xenial
ignored
wily
ignored
vivid
ignored
utopic
ignored
trusty
ignored
saucy
ignored
precise
dne
lucid
dne
linux-grouper
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
ignored
trusty
dne
saucy
ignored
precise
dne
lucid
dne
linux-hwe
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-hwe-edge
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-linaro-omap
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
dne
linux-linaro-shared
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
dne
linux-linaro-vexpress
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
dne
linux-lts-quantal
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
Fixed 3.5.0-54.81~precise1
released
lucid
dne
linux-lts-raring
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
dne
linux-lts-saucy
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
dne
linux-lts-trusty
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
Fixed 3.13.0-35.62~precise1
released
lucid
dne
linux-lts-utopic
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
precise
dne
lucid
dne
linux-lts-vivid
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
precise
dne
lucid
dne
linux-lts-wily
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-lts-xenial
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
not-affected
precise
dne
linux-maguro
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
ignored
precise
dne
lucid
dne
linux-mako
zesty
dne
yakkety
ignored
xenial
ignored
wily
ignored
vivid
ignored
utopic
ignored
trusty
ignored
saucy
ignored
precise
dne
lucid
dne
linux-manta
zesty
dne
yakkety
dne
xenial
dne
wily
ignored
vivid
ignored
utopic
ignored
trusty
ignored
saucy
ignored
precise
dne
lucid
dne
linux-mvl-dove
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
dne
lucid
ignored
linux-qcm-msm
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
precise
ignored
lucid
ignored
linux-raspi2
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
dne
trusty
dne
precise
dne
linux-snapdragon
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
dne
trusty
dne
precise
dne
linux-ti-omap4
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
ignored
precise
Fixed 3.2.0-1452.72
released
lucid
dne
Common Weakness Enumeration
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
http://permalink.gmane.org/gmane.linux.scsi.target.devel/6618
http://secunia.com/advisories/59134
http://secunia.com/advisories/59777
http://secunia.com/advisories/60564
http://secunia.com/advisories/61310
http://www.openwall.com/lists/oss-security/2014/06/11/1
http://www.ubuntu.com/usn/USN-2334-1
http://www.ubuntu.com/usn/USN-2335-1
https://bugzilla.redhat.com/show_bug.cgi?id=1108744
https://github.com/torvalds/linux/commit/4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15685.html
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
http://permalink.gmane.org/gmane.linux.scsi.target.devel/6618
http://secunia.com/advisories/59134
http://secunia.com/advisories/59777
http://secunia.com/advisories/60564
http://secunia.com/advisories/61310
http://www.openwall.com/lists/oss-security/2014/06/11/1
http://www.ubuntu.com/usn/USN-2334-1
http://www.ubuntu.com/usn/USN-2335-1
https://bugzilla.redhat.com/show_bug.cgi?id=1108744
https://github.com/torvalds/linux/commit/4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15685.html