NVD

Id
35372  
Name
CVE-2014-8173  
Description
The pmd_none_or_trans_huge_or_clear_bad function in include/asm-generic/pgtable.h in the Linux kernel before 3.13 on NUMA systems does not properly determine whether a Page Middle Directory (PMD) entry is a transparent huge-table entry, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted MADV_WILLNEED madvise system call that leverages the absence of a page-table lock.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2015-03-16  
Modified Date
2017-01-02  
Seq
2014-8173  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
181340 35372 CVE-2014-8173 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ee53664bda169f519ce3c6a22d378f0b946c8178  View
181341 35372 CVE-2014-8173 openSUSE-SU-2015:0714  View
181342 35372 CVE-2014-8173 RHSA-2015:0290  View
181343 35372 CVE-2014-8173 RHSA-2015:0694  View
181344 35372 CVE-2014-8173 https://bugzilla.redhat.com/show_bug.cgi?id=1198457  View
181345 35372 CVE-2014-8173 https://github.com/torvalds/linux/commit/ee53664bda169f519ce3c6a22d378f0b946c8178  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
19108 JVNDB-2014-007983 NUMA システム上で稼動する Linux Kernel の include/asm-generic/pgtable.h におけるサービス運用妨害 (DoS) の脆弱性 NUMA システム上で稼動する Linux Kernel の include/asm-generic/pgtable.h の pmd_none_or_trans_huge_or_clear_bad 関数は、Page Middle Directory (PMD) エントリが transparent huge-table エントリであるかどうかを適切に判定しないため、サービス運用妨害 (NULL ポインタデリファレンスおよびシステムクラッシュ) 状態にされるなど、不特定の影響を受ける脆弱性が存在します。 CVE-2014-8173 75466 CVE-2014-8173 35372 7.2 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-007983.html 2014-10-10 2015-03-18 View