[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2015-0070":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":32,"duplicates":33,"related":34,"reserved_at":9,"published_at":44,"modified_at":45,"state":9,"summary":46,"references_raw":48,"kevs":81,"epss":9,"epss_history":82,"metrics":83,"affected":84},"MGASA-2015-0070","Updated kernel packages fix security vulnerabilities\n\nThis kernel update is based on upstream -longterm 3.14.32 and fixes the \nfollowing security issues:\n\nThe Linux kernel through 3.17.4 does not properly restrict dropping of\nsupplemental group memberships in certain namespace scenarios, which allows\nlocal users to bypass intended file permissions by leveraging a POSIX ACL\ncontaining an entry for the group category that is more restrictive than\nthe entry for the other category, aka a \"negative groups\" issue, related to\nkernel/groups.c, kernel/uid16.c, and kernel/user_namespace.c (CVE-2014-8989).\n\nThe batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in\nthe B.A.T.M.A.N. implementation in the Linux kernel through 3.18.1 uses an\nincorrect length field during a calculation of an amount of memory, which\nallows remote attackers to cause a denial of service (mesh-node system crash)\nvia fragmented packets (CVE-2014-9428).\n\nRace condition in the key_gc_unused_keys function in security/keys/gc.c\nin the Linux kernel through 3.18.2 allows local users to cause a denial\nof service (memory corruption or panic) or possibly have unspecified other\nimpact via keyctl commands that trigger access to a key structure member\nduring garbage collection of a key (CVE-2014-9529).\n\nThe parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux\nkernel before 3.18.2 does not validate a length value in the Extensions\nReference (ER) System Use Field, which allows local users to obtain sensitive\ninformation from kernel memory via a crafted iso9660 image (CVE-2014-9584).\n\nThe vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through\n3.18.2 does not properly choose memory locations for the vDSO area, which\nmakes it easier for local users to bypass the ASLR protection mechanism by\nguessing a location at the end of a PMD (CVE-2014-9585).\n\nLinux Kernel 2.6.38 through 3.18 are affected by a flaw in the Crypto API\nthat allows any local user to load any installed kernel module on systems\nwhere CONFIG_CRYPTO_USER_API=y by abusing the request_module() call\n(CVE-2013-7421, CVE-2014-9644).\n\nWhen hitting an sctp INIT collision case during the 4WHS with AUTH enabled,\nit can create a local denial of service by triggerinf a panic on server side\n(CVE-2015-1421).\n\nIt was found that routing packets to too many different dsts/too fast can\nlead to a excessive resource consumption. A remote attacker can use this\nflaw to crash the system (CVE-2015-1465).\n\nFor other fixes in this update, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30],{"_key":15},"CVE-2013-7421",{"_key":17},"CVE-2014-8989",{"_key":19},"CVE-2014-9428",{"_key":21},"CVE-2014-9529",{"_key":23},"CVE-2014-9584",{"_key":25},"CVE-2014-9585",{"_key":27},"CVE-2014-9644",{"_key":29},"CVE-2015-1421",{"_key":31},"CVE-2015-1465",[],[],[35,36,37,38,39,40,41,42,43],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},"2015-02-17T18:38:13Z","2026-04-16T06:25:01.110931073Z",{"cisa_kev":47,"cisa_ransomware":47,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[49,55,60,65,69,73,77],{"url":50,"sources":51,"tags":53},"https://advisories.mageia.org/MGASA-2015-0070.html",[52],"osv_mageia",[54],"Advisory",{"url":56,"sources":57,"tags":58},"https://bugs.mageia.org/show_bug.cgi?id=15221",[52],[59],"REPORT",{"url":61,"sources":62,"tags":63},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.28",[52],[59,64],"WEB",{"url":66,"sources":67,"tags":68},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.29",[52],[59,64],{"url":70,"sources":71,"tags":72},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.30",[52],[59,64],{"url":74,"sources":75,"tags":76},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.31",[52],[59,64],{"url":78,"sources":79,"tags":80},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.32",[52],[59,64],[],[],[],[85,97,101,107,113,119,125,131,137,141],{"ecosystem":86,"name":87,"vendor":88,"product":87,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":87,"source":9,"versions":90},"Mageia","kernel","mageia","rpm",[91],{"version":92,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":95,"version_end_type":96,"fixed_in":9},"lt3_14_32_1_mga4",true,"ecosystem","3.14.32-1.mga4","excluding",{"ecosystem":86,"name":98,"vendor":88,"product":98,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":98,"source":9,"versions":99},"kernel-userspace-headers",[100],{"version":92,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":95,"version_end_type":96,"fixed_in":9},{"ecosystem":86,"name":102,"vendor":88,"product":102,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":102,"source":9,"versions":103},"kmod-broadcom-wl",[104],{"version":105,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":96,"fixed_in":9},"lt6_30_223_141_47_mga4_nonfree","6.30.223.141-47.mga4.nonfree",{"ecosystem":86,"name":108,"vendor":88,"product":108,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":108,"source":9,"versions":109},"kmod-fglrx",[110],{"version":111,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":112,"version_end_type":96,"fixed_in":9},"lt14_010_1006_17_mga4_nonfree","14.010.1006-17.mga4.nonfree",{"ecosystem":86,"name":114,"vendor":88,"product":114,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":114,"source":9,"versions":115},"kmod-nvidia-current",[116],{"version":117,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":118,"version_end_type":96,"fixed_in":9},"lt331_113_3_mga4_nonfree","331.113-3.mga4.nonfree",{"ecosystem":86,"name":120,"vendor":88,"product":120,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":120,"source":9,"versions":121},"kmod-nvidia173",[122],{"version":123,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":124,"version_end_type":96,"fixed_in":9},"lt173_14_39_31_mga4_nonfree","173.14.39-31.mga4.nonfree",{"ecosystem":86,"name":126,"vendor":88,"product":126,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":126,"source":9,"versions":127},"kmod-nvidia304",[128],{"version":129,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":130,"version_end_type":96,"fixed_in":9},"lt304_125_3_mga4_nonfree","304.125-3.mga4.nonfree",{"ecosystem":86,"name":132,"vendor":88,"product":132,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":132,"source":9,"versions":133},"kmod-vboxadditions",[134],{"version":135,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":136,"version_end_type":96,"fixed_in":9},"lt4_3_20_5_mga4","4.3.20-5.mga4",{"ecosystem":86,"name":138,"vendor":88,"product":138,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":138,"source":9,"versions":139},"kmod-virtualbox",[140],{"version":135,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":136,"version_end_type":96,"fixed_in":9},{"ecosystem":86,"name":142,"vendor":88,"product":142,"cpe_part":9,"purl_type":89,"purl_namespace":88,"purl_name":142,"source":9,"versions":143},"kmod-xtables-addons",[144],{"version":145,"is_range":93,"range_type":94,"version_start":9,"version_start_type":9,"version_end":146,"version_end_type":96,"fixed_in":9},"lt2_5_11_mga4","2.5-11.mga4"]