CVE-2014-3144

Advisory lineage Upstream: 0 Downstream: 8

Downstream

DEBIAN-CVE-2014-3144 DLA-0015-1 DSA-2949-1 RHSA-2014:0786 RHSA-2014:0913 RHSA-2014:0981

Modified

Published: 11 May 2014, 21:00

Last modified:06 Aug 2024, 10:35

Vulnerability Summary

Overall Risk (default)

medium

30/100

CVSS Score

4.9 MEDIUM

v2.0 (nvd)

EPSS Score

0.06% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

1 found

Dark Web

Not detected

Timeline

11 May 2014, 21:00

Published

Vulnerability first disclosed

06 Aug 2024, 10:35

Last Modified

Vulnerability information updated

Description

The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the sk_run_filter function in net/core/filter.c in the Linux kernel through 3.14.3 do not check whether a certain length value is sufficiently large, which allows local users to cause a denial of service (integer underflow and system crash) via crafted BPF instructions. NOTE: the affected code was moved to the __skb_get_nlattr and __skb_get_nlattr_nest functions before the vulnerability was announced.

CVSS Metrics

v2.0•MEDIUM•Score: 4.9AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 0.06%• Percentile: 18%

Techniques & Countermeasures

CWE-190•Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

Affected Systems

canonical•ubuntu_linux
10.04 | 12.04 | 13.10
debian•debian_linux
7.0
linux•linux_kernel
≤ 3.14.3
oracle•linux
6 | 7