CVE-2014-9322
First published: Wed Dec 10 2014(Updated: )
arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | <3.2.65 | |
| Linux Kernel | >=3.3<3.4.106 | |
| Linux Kernel | >=3.5<3.10.62 | |
| Linux Kernel | >=3.11<3.12.35 | |
| Linux Kernel | >=3.13<3.14.26 | |
| Linux Kernel | >=3.15<3.16.35 | |
| Linux Kernel | >=3.17<3.17.5 | |
| redhat enterprise Linux eus | =5.6 | |
| Ubuntu Linux | =10.04 | |
| openSUSE Evergreen | =11.4 | |
| SUSE Linux Enterprise Server | =10-sp4 | |
| Android | =6.0 | |
| Android | =6.0.1 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.16-1 | |
| Linux kernel | <3.2.65 | |
| Linux kernel | >=3.3<3.4.106 | |
| Linux kernel | >=3.5<3.10.62 | |
| Linux kernel | >=3.11<3.12.35 | |
| Linux kernel | >=3.13<3.14.26 | |
| Linux kernel | >=3.15<3.16.35 | |
| Linux kernel | >=3.17<3.17.5 | |
| Red Hat Enterprise Linux Server EUS | =5.6 | |
| Evergreen ILS | =11.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2014/12/15/6
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=6f442be2fb22be02cafa606f1769fa1e6f894441
- https://bugzilla.redhat.com/show_bug.cgi?id=1172806
- https://github.com/torvalds/linux/commit/6f442be2fb22be02cafa606f1769fa1e6f894441
- https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.5
- http://secunia.com/advisories/62336
- http://www.exploit-db.com/exploits/36266
- http://www.ubuntu.com/usn/USN-2491-1
- http://osvdb.org/show/osvdb/115919
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html
- http://www.zerodayinitiative.com/advisories/ZDI-16-170
- https://help.joyent.com/entries/98788667-Security-Advisory-ZDI-CAN-3263-ZDI-CAN-3284-and-ZDI-CAN-3364-Vulnerabilities
- http://source.android.com/security/bulletin/2016-04-02.html
- http://marc.info/?l=bugtraq&m=142722544401658&w=2
- http://marc.info/?l=bugtraq&m=142722450701342&w=2
- http://rhn.redhat.com/errata/RHSA-2014-1998.html
- http://rhn.redhat.com/errata/RHSA-2014-2008.html
- http://rhn.redhat.com/errata/RHSA-2014-2028.html
- http://rhn.redhat.com/errata/RHSA-2014-2031.html
- http://rhn.redhat.com/errata/RHSA-2015-0009.html
- https://launchpad.net/bugs/cve/CVE-2014-9322
- https://access.redhat.com/security/cve/CVE-2014-9090
- https://rhn.redhat.com/errata/RHSA-2014-1998.html
- https://rhn.redhat.com/errata/RHSA-2014-1997.html
- https://rhn.redhat.com/errata/RHSA-2014-2008.html
- https://rhn.redhat.com/errata/RHSA-2014-2009.html
- https://rhn.redhat.com/errata/RHSA-2014-2010.html
- https://rhn.redhat.com/errata/RHSA-2014-2028.html
- https://rhn.redhat.com/errata/RHSA-2014-2031.html
- https://rhn.redhat.com/errata/RHSA-2014-2029.html
- https://rhn.redhat.com/errata/RHSA-2014-2030.html
- https://rhn.redhat.com/errata/RHSA-2015-0009.html
- http://seclists.org/oss-sec/2015/q3/25
- http://marc.info/?l=bugtraq&m=142722450701342&w=2
- http://marc.info/?l=bugtraq&m=142722544401658&w=2
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f442be2fb22be02cafa606f1769fa1e6f894441
- https://security-tracker.debian.org/tracker/CVE-2014-9322
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322
- https://nvd.nist.gov/vuln/detail/CVE-2014-9322
- https://ubuntu.com/security/CVE-2014-9322
Frequently Asked Questions
What is the severity of CVE-2014-9322?
The severity of CVE-2014-9322 is classified as high due to its potential to allow local users to gain elevated privileges.
How do I fix CVE-2014-9322?
To fix CVE-2014-9322, upgrade to a Linux kernel version that is 3.17.5 or newer or ensure you are on a fixed version like 5.10.223-1 or 6.1.123-1.
What systems are affected by CVE-2014-9322?
CVE-2014-9322 affects various Linux kernel versions prior to 3.17.5, including those on operating systems like Debian, Ubuntu, and SUSE.
Can CVE-2014-9322 be exploited remotely?
CVE-2014-9322 cannot be exploited remotely as it requires local user access to the system.
What is the impact of CVE-2014-9322?
The impact of CVE-2014-9322 allows a local user to gain unauthorized privileges, potentially compromising system security.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2014-9322
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/remedy
- agent/references
- agent/description
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/security-tracker-debian
- source/Debian
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- vendor/linux
- canonical/linux kernel
- version/linux kernel/3.3
- version/linux kernel/3.5
- version/linux kernel/3.11
- version/linux kernel/3.13
- version/linux kernel/3.15
- version/linux kernel/3.17
- vendor/redhat
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/5.6
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/10.04
- vendor/opensuse
- canonical/opensuse evergreen
- version/opensuse evergreen/11.4
- vendor/suse
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp4
- vendor/google
- canonical/android
- version/android/6.0
- version/android/6.0.1
- package-manager/debian
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/5.6
- canonical/evergreen ils
- version/evergreen ils/11.4