CVE-2014-5471
First published: Tue Aug 26 2014(Updated: )
It was found that the parse_rock_ridge_inode_internal() function of the Linux kernel's ISOFS implementation did not correctly check relocated directories when processing Rock Ridge child link (CL) tags. An attacker with physical access to the system could use a specially crafted ISO image to crash the system or, potentially, escalate their privileges on the system.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <0:2.6.32-504.3.3.el6 | 0:2.6.32-504.3.3.el6 |
| redhat/kernel | <0:2.6.32-220.60.2.el6 | 0:2.6.32-220.60.2.el6 |
| redhat/kernel | <0:2.6.32-358.59.1.el6 | 0:2.6.32-358.59.1.el6 |
| redhat/kernel | <0:2.6.32-431.53.2.el6 | 0:2.6.32-431.53.2.el6 |
| redhat/kernel | <0:3.10.0-123.20.1.el7 | 0:3.10.0-123.20.1.el7 |
| redhat/kernel-rt | <0:3.10.33-rt32.51.el6 | 0:3.10.33-rt32.51.el6 |
| Linux Kernel | <=3.16.1 | |
| Linux Kernel | =3.16.0 | |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.135-1 6.12.25-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2014-5471 https://nvd.nist.gov/vuln/detail/CVE-2014-5471
- https://bugzilla.redhat.com/show_bug.cgi?id=1134099
- https://access.redhat.com/errata/RHSA-2014:1997
- https://access.redhat.com/errata/RHSA-2015:0695
- https://access.redhat.com/errata/RHSA-2015:0803
- https://access.redhat.com/errata/RHSA-2015:0782
- https://access.redhat.com/errata/RHSA-2015:0102
- https://access.redhat.com/errata/RHSA-2014:1318
- https://access.redhat.com/security/cve/CVE-2014-5471
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=410dd3cf4c9b36f27ed4542ee18b1af5e68645a4
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html
- http://marc.info/?l=bugtraq&m=142722450701342&w=2
- http://marc.info/?l=bugtraq&m=142722544401658&w=2
- http://rhn.redhat.com/errata/RHSA-2014-1318.html
- http://rhn.redhat.com/errata/RHSA-2015-0102.html
- http://rhn.redhat.com/errata/RHSA-2015-0695.html
- http://rhn.redhat.com/errata/RHSA-2015-0782.html
- http://rhn.redhat.com/errata/RHSA-2015-0803.html
- http://seclists.org/oss-sec/2014/q3/450
- http://www.openwall.com/lists/oss-security/2014/08/27/1
- http://www.securityfocus.com/bid/69396
- http://www.ubuntu.com/usn/USN-2354-1
- http://www.ubuntu.com/usn/USN-2355-1
- http://www.ubuntu.com/usn/USN-2356-1
- http://www.ubuntu.com/usn/USN-2357-1
- http://www.ubuntu.com/usn/USN-2358-1
- http://www.ubuntu.com/usn/USN-2359-1
- https://code.google.com/p/google-security-research/issues/detail?id=88
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95481
- https://github.com/torvalds/linux/commit/410dd3cf4c9b36f27ed4542ee18b1af5e68645a4
- http://marc.info/?l=bugtraq&m=142722544401658&w=2
- http://marc.info/?l=bugtraq&m=142722450701342&w=2
- https://launchpad.net/bugs/cve/CVE-2014-5471
- https://git.kernel.org/linus/410dd3cf4c9b36f27ed4542ee18b1af5e68645a4
- https://access.redhat.com/security/cve/CVE-2014-5472
- http://seclists.org/oss-sec/2014/q3/452
- https://rhn.redhat.com/errata/RHSA-2014-1318.html
- https://rhn.redhat.com/errata/RHSA-2014-1997.html
- https://rhn.redhat.com/errata/RHSA-2015-0102.html
- https://rhn.redhat.com/errata/RHSA-2015-0695.html
- https://rhn.redhat.com/errata/RHSA-2015-0782.html
- https://rhn.redhat.com/errata/RHSA-2015-0803.html
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=410dd3cf4c9b36f27ed4542ee18b1af5e68645a4
- https://security-tracker.debian.org/tracker/CVE-2014-5471
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5471
- https://nvd.nist.gov/vuln/detail/CVE-2014-5471
- https://ubuntu.com/security/CVE-2014-5471
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2014-5471?
CVE-2014-5471 is rated as a moderate severity vulnerability that can lead to system crashes through specially crafted ISO images.
How do I fix CVE-2014-5471?
To mitigate CVE-2014-5471, update your Linux kernel to one of the affected versions that contain the security patch.
Who is affected by CVE-2014-5471?
CVE-2014-5471 affects users of the Linux kernel versions prior to the patched versions listed in the vulnerability report.
What type of vulnerability is CVE-2014-5471?
CVE-2014-5471 is a vulnerability in the ISOFS implementation of the Linux kernel related to improper handling of Rock Ridge child link tags.
Can CVE-2014-5471 be exploited remotely?
CVE-2014-5471 requires physical access to the vulnerable system for exploitation, making it less likely to be exploited remotely.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2014-5471
- agent/severity
- agent/weakness
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/description
- agent/last-modified-date
- agent/trending
- agent/source
- agent/tags
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/event
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- collector/security-tracker-debian
- source/Debian
- package-manager/redhat
- vendor/linux
- canonical/linux kernel
- version/linux kernel/3.16.1
- version/linux kernel/3.16.0
- package-manager/debian