Vulnerability CVE-2014-3144: Information

Description

The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the sk_run_filter function in net/core/filter.c in the Linux kernel through 3.14.3 do not check whether a certain length value is sufficiently large, which allows local users to cause a denial of service (integer underflow and system crash) via crafted BPF instructions. NOTE: the affected code was moved to the __skb_get_nlattr and __skb_get_nlattr_nest functions before the vulnerability was announced.

Severity: MEDIUM (4.9)

URL: https://nvd.nist.gov/vuln/detail/CVE-2014-3144

Published: May 12, 2014

Modified: Nov. 7, 2023

Error type identifier: CWE-190

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-std-def	sisyphus	3.14.17-alt1	6.1.94-alt1	ALT-PU-2014-2064-1	128797	Fixed
kernel-image-std-def	p10	3.14.17-alt1	5.10.218-alt1	ALT-PU-2014-2064-1	128797	Fixed
kernel-image-std-def	p9	3.14.17-alt1	5.4.277-alt1	ALT-PU-2014-2064-1	128797	Fixed
kernel-image-std-def	c9f2	3.14.17-alt1	5.10.214-alt0.c9f.2	ALT-PU-2014-2064-1	128797	Fixed
kernel-image-std-def	c7	3.14.18-alt1	4.4.277-alt0.M70C.1	ALT-PU-2014-2116-1	129349	Fixed
kernel-image-std-def	p11	3.14.17-alt1	6.1.91-alt1	ALT-PU-2014-2064-1	128797	Fixed
kernel-image-un-def	sisyphus	3.14.4-alt1	6.6.34-alt1	ALT-PU-2014-1634-1	119753	Fixed
kernel-image-un-def	p10	3.14.4-alt1	6.1.90-alt1	ALT-PU-2014-1634-1	119753	Fixed
kernel-image-un-def	p9	3.14.4-alt1	5.10.218-alt1	ALT-PU-2014-1634-1	119753	Fixed
kernel-image-un-def	c10f1	3.14.4-alt1	6.1.85-alt0.c10f.1	ALT-PU-2014-1634-1	119753	Fixed
kernel-image-un-def	c9f2	3.14.4-alt1	5.10.29-alt2	ALT-PU-2014-1634-1	119753	Fixed
kernel-image-un-def	c7	3.14.4-alt1	4.9.277-alt0.M70C.1	ALT-PU-2014-1638-1	119815	Fixed
kernel-image-un-def	p11	3.14.4-alt1	6.6.31-alt1	ALT-PU-2014-1634-1	119753	Fixed
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Fixed
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Fixed
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Fixed
usbip	p11	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
[oss-security] 20140509 Re: CVE request Linux kernel: filter: prevent nla extensions to peek beyond the end of the message	Mailing List Patch Third Party Advisory
https://github.com/torvalds/linux/commit/05ab8f2647e4221cbdb3856dd7d32bd5407316b3	Exploit Patch Third Party Advisory
58990	Broken Link
67309	Third Party Advisory VDB Entry
59597	Broken Link
60613	Not Applicable
59311	Not Applicable
http://linux.oracle.com/errata/ELSA-2014-3052.html	Third Party Advisory
USN-2264-1	Third Party Advisory
USN-2263-1	Third Party Advisory
USN-2262-1	Third Party Advisory
USN-2261-1	Third Party Advisory
USN-2259-1	Third Party Advisory
USN-2252-1	Third Party Advisory
USN-2251-1	Third Party Advisory
DSA-2949	Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=05ab8f2647e4221cbdb3856dd7d32bd5407316b3

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  End including
  3.14.3
  
  Configuration 2
  cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
  
  Configuration 4
  cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*
  cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*

Version: v24.5.3

Vulnerability CVE-2014-3144: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3

Configuration 4