CVE-2014-0038
CVE-2014-0038
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.
Productos afectados
n/a · n/aPoCs públicas encontradas — 9
githubgithub.com/saelo/cve-2014-0038★ 199githubgithub.com/kiruthikan99/IT19115276★ 0cve_referencewww.exploit-db.com/exploits/31346no verificadocve_referencewww.exploit-db.com/exploits/31347no verificadocve_referencewww.exploit-db.com/exploits/40503/no verificadoexploitdbwww.exploit-db.com/exploits/31305no verificadoexploitdbwww.exploit-db.com/exploits/40503no verificadoexploitdbwww.exploit-db.com/exploits/31346no verificadoexploitdbwww.exploit-db.com/exploits/31347no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2def2ef2ae5f3990aabdbe8a755911902707d268http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-02/msg00003.htmlhttp://pastebin.com/raw.php?i=DH3Lbg54https://bugzilla.redhat.com/show_bug.cgi?id=1060023https://code.google.com/p/chromium/issues/detail?id=338594http://secunia.com/advisories/56669https://github.com/saelo/cve-2014-0038https://github.com/torvalds/linux/commit/2def2ef2ae5f3990aabdbe8a755911902707d268https://www.exploit-db.com/exploits/40503/http://www.exploit-db.com/exploits/31346http://www.exploit-db.com/exploits/31347