CVE-2014-4027

The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveraging access to a SCSI initiator.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.3 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 3.14
redhatenterprise_linux
6.0
canonicalubuntu_linux
12.04
f5big-ip_access_policy_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_access_policy_manager
12.0.0
f5big-ip_advanced_firewall_manager
11.3.0 ≤
𝑥
≤ 11.6.0
f5big-ip_advanced_firewall_manager
12.0.0
f5big-ip_analytics
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_analytics
12.0.0
f5big-ip_application_acceleration_manager
11.4.0 ≤
𝑥
≤ 11.6.0
f5big-ip_application_acceleration_manager
12.0.0
f5big-ip_application_security_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_application_security_manager
12.0.0
f5big-ip_domain_name_system
12.0.0
f5big-ip_edge_gateway
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-ip_global_traffic_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_link_controller
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_link_controller
12.0.0
f5big-ip_local_traffic_manager
11.1.0 ≤
𝑥
≤ 11.6.0
f5big-ip_local_traffic_manager
12.0.0
f5big-ip_policy_enforcement_manager
11.3.0 ≤
𝑥
≤ 11.6.0
f5big-ip_policy_enforcement_manager
12.0.0
f5big-ip_protocol_security_module
11.1.0 ≤
𝑥
≤ 11.4.1
f5big-ip_wan_optimization_manager
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-ip_webaccelerator
11.1.0 ≤
𝑥
≤ 11.3.0
f5big-iq_application_delivery_controller
4.5.0
f5big-iq_cloud
4.0.0 ≤
𝑥
≤ 4.5.0
f5big-iq_device
4.2.0 ≤
𝑥
≤ 4.5.0
f5big-iq_security
4.0.0 ≤
𝑥
≤ 4.5.0
f5enterprise_manager
3.0.0 ≤
𝑥
≤ 3.1.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
sid
6.11.6-1
fixed
squeeze
not-affected
trixie
6.11.5-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
lucid
not-affected
precise
Fixed 3.2.0-68.102
released
saucy
ignored
trusty
Fixed 3.13.0-35.62
released
utopic
not-affected
vivid
not-affected
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
linux-2.6
lucid
dne
precise
dne
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-armadaxp
lucid
dne
precise
Fixed 3.2.0-1637.54
released
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-aws
precise
dne
trusty
not-affected
xenial
not-affected
yakkety
dne
zesty
dne
linux-ec2
lucid
not-affected
precise
dne
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-flo
lucid
dne
precise
dne
saucy
dne
trusty
ignored
utopic
ignored
vivid
ignored
wily
ignored
xenial
ignored
yakkety
ignored
zesty
dne
linux-fsl-imx51
lucid
ignored
precise
dne
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-gke
precise
dne
trusty
dne
xenial
not-affected
yakkety
dne
zesty
dne
linux-goldfish
lucid
dne
precise
dne
saucy
ignored
trusty
ignored
utopic
ignored
vivid
ignored
wily
ignored
xenial
ignored
yakkety
ignored
zesty
ignored
linux-grouper
lucid
dne
precise
dne
saucy
ignored
trusty
dne
utopic
ignored
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-hwe
precise
dne
trusty
dne
xenial
not-affected
yakkety
dne
zesty
dne
linux-hwe-edge
precise
dne
trusty
dne
xenial
not-affected
yakkety
dne
zesty
dne
linux-linaro-omap
lucid
dne
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-linaro-shared
lucid
dne
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-linaro-vexpress
lucid
dne
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-quantal
lucid
dne
precise
Fixed 3.5.0-54.81~precise1
released
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-raring
lucid
dne
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-saucy
lucid
dne
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-trusty
lucid
dne
precise
Fixed 3.13.0-35.62~precise1
released
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-utopic
lucid
dne
precise
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-vivid
lucid
dne
precise
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-wily
precise
dne
trusty
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-lts-xenial
precise
dne
trusty
not-affected
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-maguro
lucid
dne
precise
dne
saucy
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-mako
lucid
dne
precise
dne
saucy
ignored
trusty
ignored
utopic
ignored
vivid
ignored
wily
ignored
xenial
ignored
yakkety
ignored
zesty
dne
linux-manta
lucid
dne
precise
dne
saucy
ignored
trusty
ignored
utopic
ignored
vivid
ignored
wily
ignored
xenial
dne
yakkety
dne
zesty
dne
linux-mvl-dove
lucid
ignored
precise
dne
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-qcm-msm
lucid
ignored
precise
ignored
saucy
dne
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
linux-raspi2
precise
dne
trusty
dne
vivid
dne
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
linux-snapdragon
precise
dne
trusty
dne
wily
dne
xenial
not-affected
yakkety
not-affected
zesty
not-affected
linux-ti-omap4
lucid
dne
precise
Fixed 3.2.0-1452.72
released
saucy
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
kernel
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-abi-whitelists
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-bootwrapper
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-debug
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-debug-devel
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-devel
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-doc
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-headers
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-kdump
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-kdump-devel
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-tools
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-tools-libs
RHEL 7
0:3.10.0-123.13.1.el7
fixed
kernel-tools-libs-devel
RHEL 7
0:3.10.0-123.13.1.el7
fixed
perf
RHEL 7
0:3.10.0-123.13.1.el7
fixed
python-perf
RHEL 7
0:3.10.0-123.13.1.el7
fixed
Common Weakness Enumeration
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
http://permalink.gmane.org/gmane.linux.scsi.target.devel/6618
http://secunia.com/advisories/59134
http://secunia.com/advisories/59777
http://secunia.com/advisories/60564
http://secunia.com/advisories/61310
http://www.openwall.com/lists/oss-security/2014/06/11/1
http://www.ubuntu.com/usn/USN-2334-1
http://www.ubuntu.com/usn/USN-2335-1
https://bugzilla.redhat.com/show_bug.cgi?id=1108744
https://github.com/torvalds/linux/commit/4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15685.html
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
http://permalink.gmane.org/gmane.linux.scsi.target.devel/6618
http://secunia.com/advisories/59134
http://secunia.com/advisories/59777
http://secunia.com/advisories/60564
http://secunia.com/advisories/61310
http://www.openwall.com/lists/oss-security/2014/06/11/1
http://www.ubuntu.com/usn/USN-2334-1
http://www.ubuntu.com/usn/USN-2335-1
https://bugzilla.redhat.com/show_bug.cgi?id=1108744
https://github.com/torvalds/linux/commit/4442dc8a92b8f9ad8ee9e7f8438f4c04c03a22dc
https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15685.html