CVE-2014-9529

Description

Race condition in the key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 3.18.2 allows local users to cause a denial of service (memory corruption or panic) or possibly have unspecified other impact via keyctl commands that trigger access to a key structure member during garbage collection of a key.

CVSS Metrics

• v2.0•MEDIUM•Score: 6.9AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.11%• Percentile: 29%

Techniques & Countermeasures

• CWE-362•Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

  The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Affected Systems

• canonical•ubuntu_linux

  10.04 | 12.04 | 14.04 | 14.10

• debian•debian_linux

  7.0 | 8.0

• fedoraproject•fedora

  20 | 21

• linux•linux_kernel

  < 3.2.67 | ≥ 3.3, < 3.4.107 | ≥ 3.5, < 3.10.67 | ≥ 3.11, ≤ 3.12.37 | ≥ 3.13, ≤ 3.14.31 | ≥ 3.15, < 3.16.35 | ≥ 3.17, < 3.18.5

• opensuse•opensuse

  13.1

• redhat•enterprise_linux_desktop

  6.0 | 7.0

• redhat•enterprise_linux_server

  6.0 | 7.0

• redhat•enterprise_linux_server_aus

  6.6 | 7.3 | 7.4 | 7.6 | 7.7

• redhat•enterprise_linux_server_eus

  6.6 | 7.1 | 7.2 | 7.3 | 7.4 | 7.5 | 7.6 | 7.7

• redhat•enterprise_linux_server_tus

  6.6 | 7.3 | 7.6 | 7.7

• redhat•enterprise_linux_workstation

  6.0 | 7.0

References (23)

• http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147864.html
• http://www.ubuntu.com/usn/USN-2515-1
• https://exchange.xforce.ibmcloud.com/vulnerabilities/99641
• http://www.openwall.com/lists/oss-security/2015/01/06/10
• http://www.ubuntu.com/usn/USN-2512-1
• http://www.ubuntu.com/usn/USN-2514-1
• http://rhn.redhat.com/errata/RHSA-2015-1138.html
• http://www.ubuntu.com/usn/USN-2518-1
• http://rhn.redhat.com/errata/RHSA-2015-0864.html
• https://bugzilla.redhat.com/show_bug.cgi?id=1179813
• http://www.mandriva.com/security/advisories?name=MDVSA-2015:058
• http://www.securityfocus.com/bid/71880
• http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147973.html
• http://www.securitytracker.com/id/1036763
• https://github.com/torvalds/linux/commit/a3a8784454692dd72e5d5d34dcdab17b4420e74c
• http://www.ubuntu.com/usn/USN-2517-1
• http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00009.html
• http://www.debian.org/security/2015/dsa-3128
• http://www.ubuntu.com/usn/USN-2516-1
• http://rhn.redhat.com/errata/RHSA-2015-1137.html
• http://www.ubuntu.com/usn/USN-2513-1
• http://www.ubuntu.com/usn/USN-2511-1
• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a3a8784454692dd72e5d5d34dcdab17b4420e74c