Vulnerability CVE-2014-4699: Information

Description

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows local users to leverage a race condition and gain privileges, or cause a denial of service (double fault), via a crafted application that makes ptrace and fork system calls.

URL: https://nvd.nist.gov/vuln/detail/CVE-2014-4699

Published: July 9, 2014

Modified: Feb. 16, 2024

Error type identifier: CWE-362

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-std-def	sisyphus	3.12.24-alt2	6.1.94-alt1	ALT-PU-2014-1904-1	123975	Fixed
kernel-image-std-def	p10	3.12.24-alt2	5.10.218-alt1	ALT-PU-2014-1904-1	123975	Fixed
kernel-image-std-def	p9	3.12.24-alt2	5.4.277-alt1	ALT-PU-2014-1904-1	123975	Fixed
kernel-image-std-def	c9f2	3.12.24-alt2	5.10.214-alt0.c9f.2	ALT-PU-2014-1904-1	123975	Fixed
kernel-image-std-def	c7	3.12.24-alt2	4.4.277-alt0.M70C.1	ALT-PU-2014-1924-1	124705	Fixed
kernel-image-std-def	p11	3.12.24-alt2	6.1.91-alt1	ALT-PU-2014-1904-1	123975	Fixed
kernel-image-std-pae	c9f2	3.12.24-alt2	4.19.72-alt1	ALT-PU-2014-1909-1	123977	Fixed
kernel-image-std-pae	c7	3.12.24-alt2	3.14.28-alt1	ALT-PU-2014-1925-1	124704	Fixed
kernel-image-un-def	sisyphus	3.15.4-alt1	6.6.34-alt1	ALT-PU-2014-1903-1	123898	Fixed
kernel-image-un-def	p10	3.15.4-alt1	6.1.90-alt1	ALT-PU-2014-1903-1	123898	Fixed
kernel-image-un-def	p9	3.15.4-alt1	5.10.218-alt1	ALT-PU-2014-1903-1	123898	Fixed
kernel-image-un-def	c10f1	3.15.4-alt1	6.1.85-alt0.c10f.1	ALT-PU-2014-1903-1	123898	Fixed
kernel-image-un-def	c9f2	3.15.4-alt1	5.10.29-alt2	ALT-PU-2014-1903-1	123898	Fixed
kernel-image-un-def	c7	3.15.5-alt1	4.9.277-alt0.M70C.1	ALT-PU-2014-1923-1	124706	Fixed
kernel-image-un-def	p11	3.15.4-alt1	6.6.31-alt1	ALT-PU-2014-1903-1	123898	Fixed
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Fixed
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Fixed
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Fixed
usbip	p11	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
[oss-security] 20140704 CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
[oss-security] 20140708 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.4	Release Notes Vendor Advisory
[oss-security] 20140705 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1115927	Issue Tracking Patch Third Party Advisory
[oss-security] 20140708 Re: CVE-2014-4699: Linux ptrace bug	Mailing List Third Party Advisory
https://github.com/torvalds/linux/commit/b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43a	Patch Third Party Advisory
USN-2269-1	Third Party Advisory
USN-2268-1	Third Party Advisory
USN-2274-1	Third Party Advisory
USN-2273-1	Third Party Advisory
USN-2272-1	Third Party Advisory
USN-2267-1	Third Party Advisory
USN-2271-1	Third Party Advisory
DSA-2972	Third Party Advisory
USN-2266-1	Third Party Advisory
USN-2270-1	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.47	Release Notes Vendor Advisory
59639	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.11	Release Notes Vendor Advisory
59633	Third Party Advisory
59654	Third Party Advisory
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.97	Release Notes Vendor Advisory
http://linux.oracle.com/errata/ELSA-2014-0924.html	Third Party Advisory
http://linux.oracle.com/errata/ELSA-2014-3047.html	Third Party Advisory
http://linux.oracle.com/errata/ELSA-2014-3048.html	Third Party Advisory
http://packetstormsecurity.com/files/127573/Linux-Kernel-ptrace-sysret-Local-Privilege-Escalation.html	Exploit Third Party Advisory VDB Entry
34134	Exploit Third Party Advisory VDB Entry
60393	Third Party Advisory
108754	Broken Link
60220	Third Party Advisory
60380	Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43a	Broken Link Third Party Advisory

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.15
  End excliding
  3.15.4
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.13
  End excliding
  3.14.11
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.11
  End excliding
  3.12.25
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.5
  End excliding
  3.10.47
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  3.3
  End excliding
  3.4.97
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  Start including
  2.6.17
  End excliding
  3.2.61
  
  Configuration 2
  cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  
  Configuration 3
  cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
  cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

Version: v24.5.3

Vulnerability CVE-2014-4699: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1

Configuration 2

Configuration 3