← back
CVE-2014-1690

CVE-2014-1690

EPSS 3.8%
The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2690d97ade05c5325cbf7c72b94b90d265659886https://bugzilla.redhat.com/show_bug.cgi?id=1058748https://github.com/torvalds/linux/commit/2690d97ade05c5325cbf7c72b94b90d265659886http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.8http://www.openwall.com/lists/oss-security/2014/01/28/3http://www.ubuntu.com/usn/USN-2137-1http://www.ubuntu.com/usn/USN-2140-1http://www.ubuntu.com/usn/USN-2158-1