Wind River Support Network

HomeDefectsOVP-2018
Fixed

OVP-2018 : Security Advisory - linux - CVE-2014-3534

Created: Aug 3, 2014    Updated: Mar 11, 2016
Resolved Date: Aug 15, 2014
Found In Version: 5.0.1.16
Fix Version: 5.0.1.18
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACE_POKEUSR_AREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a crafted application that makes a ptrace system call.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3534
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube