Computer Security
[EN] securityvulns.ru no-pyccku


Linux privilege escalation
Published:09.06.2014
Source:
SecurityVulns ID:13812
Type:local
Threat Level:
7/10
Description:ring 0 code execution via futex syscall.
Affected:LINUX : kernel 2.6
 LINUX : kernel 3.13
CVE:CVE-2014-3153 (The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.)
Original documentdocumentSolar Designer, [oss-security] Linux kernel futex local privilege escalation (CVE-2014-3153) (09.06.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod