[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-2395-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":38,"duplicates":39,"related":40,"reserved_at":9,"published_at":47,"modified_at":48,"state":9,"summary":49,"references_raw":51,"kevs":83,"epss":9,"epss_history":84,"metrics":85,"affected":86},"USN-2395-1","linux vulnerabilities\n\n\nNadav Amit reported that the KVM (Kernel Virtual Machine) mishandles\nnoncanonical addresses when emulating instructions that change the rip\n(Instruction Pointer). A guest user with access to I/O or the MMIO can use\nthis flaw to cause a denial of service (system crash) of the guest.\n(CVE-2014-3647)\n\nA flaw was discovered with the handling of the invept instruction in the\nKVM (Kernel Virtual Machine) subsystem of the Linux kernel. An unprivileged\nguest user could exploit this flaw to cause a denial of service (system\ncrash) on the guest. (CVE-2014-3646)\n\nLars Bull reported a race condition in the PIT (programmable interrupt\ntimer) emulation in the KVM (Kernel Virtual Machine) subsystem of the Linux\nkernel. A local guest user with access to PIT i/o ports could exploit this\nflaw to cause a denial of service (crash) on the host. (CVE-2014-3611)\n\nLars Bull and Nadav Amit reported a flaw in how KVM (the Kernel Virtual\nMachine) handles noncanonical writes to certain MSR registers. A privileged\nguest user can exploit this flaw to cause a denial of service (kernel\npanic) on the host. (CVE-2014-3610)\n\nA bounds check error was discovered in the driver for the Logitech Unifying\nreceivers and devices. A physically proximate attacker could exploit this\nflaw to to cause a denial of service (invalid kfree) or to execute\narbitrary code. (CVE-2014-3182)\n\nRaphael Geissert reported a NULL pointer dereference in the Linux kernel's\nCIFS client. A remote CIFS server could cause a denial of service (system\ncrash) or possibly have other unspecified impact by deleting IPC$ share\nduring resolution of DFS referrals. (CVE-2014-7145)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36],{"_key":15},"CVE-2014-3182",{"_key":17},"CVE-2014-3610",{"_key":19},"CVE-2014-3611",{"_key":21},"CVE-2014-3646",{"_key":23},"CVE-2014-3647",{"_key":25},"CVE-2014-7145",{"_key":27},"UBUNTU-CVE-2014-3182",{"_key":29},"UBUNTU-CVE-2014-3610",{"_key":31},"UBUNTU-CVE-2014-3611",{"_key":33},"UBUNTU-CVE-2014-3646",{"_key":35},"UBUNTU-CVE-2014-3647",{"_key":37},"UBUNTU-CVE-2014-7145",[],[],[41,42,43,44,45,46],{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":27},"2014-10-30T19:39:17Z","2026-04-22T09:04:01.819239Z",{"cisa_kev":50,"cisa_ransomware":50,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[52,58,63,67,71,75,79],{"url":53,"sources":54,"tags":56},"https://ubuntu.com/security/notices/USN-2395-1",[55],"osv_ubuntu",[57],"Advisory",{"url":59,"sources":60,"tags":61},"https://ubuntu.com/security/CVE-2014-3182",[55],[62],"REPORT",{"url":64,"sources":65,"tags":66},"https://ubuntu.com/security/CVE-2014-3610",[55],[62],{"url":68,"sources":69,"tags":70},"https://ubuntu.com/security/CVE-2014-3611",[55],[62],{"url":72,"sources":73,"tags":74},"https://ubuntu.com/security/CVE-2014-3646",[55],[62],{"url":76,"sources":77,"tags":78},"https://ubuntu.com/security/CVE-2014-3647",[55],[62],{"url":80,"sources":81,"tags":82},"https://ubuntu.com/security/CVE-2014-7145",[55],[62],[],[],[],[87],{"ecosystem":88,"name":89,"vendor":90,"product":89,"cpe_part":9,"purl_type":91,"purl_namespace":90,"purl_name":89,"source":9,"versions":92},"Ubuntu","linux","ubuntu","deb",[93],{"version":94,"is_range":95,"range_type":96,"version_start":9,"version_start_type":9,"version_end":97,"version_end_type":98,"fixed_in":9},"lt3_13_0_39_66",true,"ecosystem","3.13.0-39.66","excluding"]