CVE-2014-3611: Race Condition
First published: Sun Sep 21 2014(Updated: )
Last updated 24 July 2024
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <=3.17.2 | |
| Red Hat Enterprise Linux | =5.0 | |
| Ubuntu | =10.04 | |
| Ubuntu | =12.04 | |
| Debian Linux | =7.0 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.135-1 6.12.22-1 6.12.25-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2febc839133280d5a5e8e1179c94ea674489dae2
- http://rhn.redhat.com/errata/RHSA-2015-0126.html
- http://rhn.redhat.com/errata/RHSA-2015-0284.html
- http://rhn.redhat.com/errata/RHSA-2015-0869.html
- http://www.debian.org/security/2014/dsa-3060
- http://www.openwall.com/lists/oss-security/2014/10/24/9
- http://www.ubuntu.com/usn/USN-2394-1
- http://www.ubuntu.com/usn/USN-2417-1
- http://www.ubuntu.com/usn/USN-2418-1
- http://www.ubuntu.com/usn/USN-2491-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1144878
- https://github.com/torvalds/linux/commit/2febc839133280d5a5e8e1179c94ea674489dae2
- https://launchpad.net/bugs/cve/CVE-2014-3611
- http://git.kernel.org/cgit/virt/kvm/kvm.git/commit/?id=2febc839133280d5a5e8e1179c94ea674489dae2
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1156537
- https://rhn.redhat.com/errata/RHSA-2014-1724.html
- https://rhn.redhat.com/errata/RHSA-2014-1843.html
- https://rhn.redhat.com/errata/RHSA-2015-0126.html
- https://rhn.redhat.com/errata/RHSA-2015-0284.html
- https://rhn.redhat.com/errata/RHSA-2015-0869.html
- https://git.kernel.org/cgit/virt/kvm/kvm.git/commit/?id=2febc839133280d5a5e8e1179c94ea674489dae2
- https://security-tracker.debian.org/tracker/CVE-2014-3611
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3611
- https://nvd.nist.gov/vuln/detail/CVE-2014-3611
- https://ubuntu.com/security/CVE-2014-3611
Frequently Asked Questions
What is the severity of CVE-2014-3611?
CVE-2014-3611 is classified as a denial of service vulnerability that can lead to a host OS crash.
How do I fix CVE-2014-3611?
To fix CVE-2014-3611, you should upgrade to a version of the Linux kernel that is above 3.17.2 or apply relevant patch updates from your distribution.
Which versions of Linux are affected by CVE-2014-3611?
CVE-2014-3611 affects Linux kernel versions up to and including 3.17.2, as well as specific versions of Red Hat Enterprise Linux, Ubuntu, and Debian.
What kind of applications are impacted by CVE-2014-3611?
CVE-2014-3611 impacts applications running on guest operating systems that leverage the KVM subsystem of the Linux kernel.
How can I identify if my system is vulnerable to CVE-2014-3611?
You can identify if your system is vulnerable to CVE-2014-3611 by checking the version of your Linux kernel and ensuring it's not older than 3.17.2.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2014-3611
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/trending
- agent/last-modified-date
- agent/source
- agent/author
- agent/description
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/tags
- agent/softwarecombine
- collector/security-tracker-debian
- source/Debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/3.17.2
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/5.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/12.04
- vendor/debian
- canonical/debian linux
- version/debian linux/7.0
- package-manager/debian