CVE-2014-4699
CVE-2014-4699
The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 4
githubgithub.com/vnik5287/cve-2014-4699-ptrace★ 1cve_referencepacketstormsecurity.com/files/127573/Linux-Kernel-ptrace-sysret-Local-Privilege-Escalation.htmlnão verificadocve_referencewww.exploit-db.com/exploits/34134não verificadoexploitdbwww.exploit-db.com/exploits/34134não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43ahttp://linux.oracle.com/errata/ELSA-2014-0924.htmlhttp://linux.oracle.com/errata/ELSA-2014-3047.htmlhttp://linux.oracle.com/errata/ELSA-2014-3048.htmlhttp://openwall.com/lists/oss-security/2014/07/05/4http://openwall.com/lists/oss-security/2014/07/08/16http://openwall.com/lists/oss-security/2014/07/08/5http://packetstormsecurity.com/files/127573/Linux-Kernel-ptrace-sysret-Local-Privilege-Escalation.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1115927http://secunia.com/advisories/59633http://secunia.com/advisories/59639http://secunia.com/advisories/59654