usn-2447-1
Vulnerability from osv_ubuntu
Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment (SS) register in the x86 architecture. A local attacker could exploit this flaw to gain administrative privileges. (CVE-2014-9322)
An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in attacking the kernel. (CVE-2014-8134)
Rabin Vincent, Robert Swiecki, Russell King discovered that the ftrace subsystem of the Linux kernel does not properly handle private syscall numbers. A local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2014-7826)
A flaw in the handling of malformed ASCONF chunks by SCTP (Stream Control Transmission Protocol) implementation in the Linux kernel was discovered. A remote attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2014-3673)
A flaw in the handling of duplicate ASCONF chunks by SCTP (Stream Control Transmission Protocol) implementation in the Linux kernel was discovered. A remote attacker could exploit this flaw to cause a denial of service (panic). (CVE-2014-3687)
It was discovered that excessive queuing by SCTP (Stream Control Transmission Protocol) implementation in the Linux kernel can cause memory pressure. A remote attacker could exploit this flaw to cause a denial of service. (CVE-2014-3688)
Rabin Vincent, Robert Swiecki, Russell Kinglaw discovered a flaw in how the perf subsystem of the Linux kernel handles private systecall numbers. A local user could exploit this to cause a denial of service (OOPS) or bypass ASLR protections via a crafted application. (CVE-2014-7825)
Andy Lutomirski discovered a flaw in how the Linux kernel handles pivot_root when used with a chroot directory. A local user could exploit this flaw to cause a denial of service (mount-tree loop). (CVE-2014-7970)
Dmitry Monakhov discovered a race condition in the ext4_file_write_iter function of the Linux kernel's ext4 filesystem. A local user could exploit this flaw to cause a denial of service (file unavailability). (CVE-2014-8086)
The KVM (kernel virtual machine) subsystem of the Linux kernel miscalculates the number of memory pages during the handling of a mapping failure. A guest OS user could exploit this to cause a denial of service (host OS page unpinning) or possibly have unspecified other impact by leveraging guest OS privileges. (CVE-2014-8369)
Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment (SS) register on the x86 architecture. A local attacker could exploit this flaw to cause a denial of service (panic). (CVE-2014-9090)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2014-8134",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2014-9090",
"severity": [
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2014-9322",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:14.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "block-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "block-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "block-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "block-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "block-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "crypto-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "crypto-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "crypto-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "crypto-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "crypto-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fat-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fat-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fat-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fat-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fat-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fb-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "firewire-core-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "firewire-core-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "firewire-core-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "firewire-core-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "floppy-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "floppy-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "floppy-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "floppy-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-core-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-core-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-core-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-core-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-core-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-secondary-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-secondary-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-secondary-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-secondary-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "fs-secondary-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "input-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "input-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "input-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "input-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "input-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ipmi-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ipmi-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ipmi-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ipmi-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ipmi-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "irda-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "irda-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "irda-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "irda-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "irda-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "kernel-image-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "kernel-image-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "kernel-image-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "kernel-image-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "kernel-image-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-cloud-tools-3.16.0-28-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-cloud-tools-3.16.0-28-lowlatency",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-generic-lpae",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-lowlatency",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-powerpc-e500mc",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-powerpc-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-powerpc64-emb",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-headers-3.16.0-28-powerpc64-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-generic-lpae",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-lowlatency",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-powerpc-e500mc",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-powerpc-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-powerpc64-emb",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-3.16.0-28-powerpc64-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-image-extra-3.16.0-28-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-cloud-tools-3.16.0-28",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-cloud-tools-common",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-tools-3.16.0-28",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-tools-common",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-udebs-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-udebs-generic-lpae",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-udebs-powerpc-e500mc",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-udebs-powerpc-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-lts-utopic-udebs-powerpc64-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-generic",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-generic-lpae",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-lowlatency",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-powerpc-e500mc",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-powerpc-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-powerpc64-emb",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "linux-tools-3.16.0-28-powerpc64-smp",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "md-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "md-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "md-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "md-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "md-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "message-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "message-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "message-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "message-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "mouse-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "mouse-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "mouse-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "mouse-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "mouse-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "multipath-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "multipath-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "multipath-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "multipath-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "multipath-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nfs-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nfs-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nfs-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nfs-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nfs-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-pcmcia-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-shared-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-shared-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-shared-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-shared-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-shared-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-usb-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-usb-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-usb-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-usb-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "nic-usb-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "parport-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "parport-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "parport-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "parport-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "parport-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pata-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pata-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pata-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pata-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pcmcia-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "pcmcia-storage-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "plip-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "plip-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "plip-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "plip-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "plip-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ppp-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ppp-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ppp-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ppp-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "ppp-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "sata-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "sata-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "sata-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "sata-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "sata-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "scsi-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "scsi-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "scsi-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "scsi-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "scsi-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "serial-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "speakup-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "speakup-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "speakup-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "speakup-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "speakup-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "squashfs-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "squashfs-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "squashfs-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "squashfs-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "squashfs-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "storage-core-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "storage-core-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "storage-core-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "storage-core-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "storage-core-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "usb-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "usb-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "usb-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "usb-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "usb-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "virtio-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "virtio-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "virtio-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "virtio-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "vlan-modules-3.16.0-28-generic-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "vlan-modules-3.16.0-28-generic-lpae-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "vlan-modules-3.16.0-28-powerpc-e500mc-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "vlan-modules-3.16.0-28-powerpc-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
},
{
"binary_name": "vlan-modules-3.16.0-28-powerpc64-smp-di",
"binary_version": "3.16.0-28.37~14.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "linux-lts-utopic",
"purl": "pkg:deb/ubuntu/linux-lts-utopic@3.16.0-28.37~14.04.1?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.16.0-28.37~14.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.16.0-25.33~14.04.2",
"3.16.0-26.35~14.04.1"
]
}
],
"aliases": [],
"details": "\nAndy Lutomirski discovered that the Linux kernel does not properly handle\nfaults associated with the Stack Segment (SS) register in the x86\narchitecture. A local attacker could exploit this flaw to gain\nadministrative privileges. (CVE-2014-9322)\n\nAn information leak in the Linux kernel was discovered that could leak the\nhigh 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine\n(KVM) paravirt guests. A user in the guest OS could exploit this leak to\nobtain information that could potentially be used to aid in attacking the\nkernel. (CVE-2014-8134)\n\nRabin Vincent, Robert Swiecki, Russell King discovered that the ftrace\nsubsystem of the Linux kernel does not properly handle private syscall\nnumbers. A local user could exploit this flaw to cause a denial of service\n(OOPS). (CVE-2014-7826)\n\nA flaw in the handling of malformed ASCONF chunks by SCTP (Stream Control\nTransmission Protocol) implementation in the Linux kernel was discovered. A\nremote attacker could exploit this flaw to cause a denial of service\n(system crash). (CVE-2014-3673)\n\nA flaw in the handling of duplicate ASCONF chunks by SCTP (Stream Control\nTransmission Protocol) implementation in the Linux kernel was discovered. A\nremote attacker could exploit this flaw to cause a denial of service\n(panic). (CVE-2014-3687)\n\nIt was discovered that excessive queuing by SCTP (Stream Control\nTransmission Protocol) implementation in the Linux kernel can cause memory\npressure. A remote attacker could exploit this flaw to cause a denial of\nservice. (CVE-2014-3688)\n\nRabin Vincent, Robert Swiecki, Russell Kinglaw discovered a flaw in how the\nperf subsystem of the Linux kernel handles private systecall numbers. A\nlocal user could exploit this to cause a denial of service (OOPS) or bypass\nASLR protections via a crafted application. (CVE-2014-7825)\n\nAndy Lutomirski discovered a flaw in how the Linux kernel handles\npivot_root when used with a chroot directory. A local user could exploit\nthis flaw to cause a denial of service (mount-tree loop). (CVE-2014-7970)\n\nDmitry Monakhov discovered a race condition in the ext4_file_write_iter\nfunction of the Linux kernel\u0027s ext4 filesystem. A local user could exploit\nthis flaw to cause a denial of service (file unavailability).\n(CVE-2014-8086)\n\nThe KVM (kernel virtual machine) subsystem of the Linux kernel\nmiscalculates the number of memory pages during the handling of a mapping\nfailure. A guest OS user could exploit this to cause a denial of service\n(host OS page unpinning) or possibly have unspecified other impact by\nleveraging guest OS privileges. (CVE-2014-8369)\n\nAndy Lutomirski discovered that the Linux kernel does not properly handle\nfaults associated with the Stack Segment (SS) register on the x86\narchitecture. A local attacker could exploit this flaw to cause a denial of\nservice (panic). (CVE-2014-9090)\n",
"id": "USN-2447-1",
"modified": "2026-02-10T04:40:51Z",
"published": "2014-12-12T07:47:06Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-2447-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-3673"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-3687"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-3688"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-7825"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-7826"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-7970"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-8086"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-8134"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-8369"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-9090"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2014-9322"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "linux-lts-utopic vulnerabilities",
"upstream": [
"UBUNTU-CVE-2014-3673",
"UBUNTU-CVE-2014-3687",
"UBUNTU-CVE-2014-3688",
"UBUNTU-CVE-2014-7825",
"UBUNTU-CVE-2014-7826",
"UBUNTU-CVE-2014-7970",
"UBUNTU-CVE-2014-8086",
"UBUNTU-CVE-2014-8134",
"UBUNTU-CVE-2014-8369",
"UBUNTU-CVE-2014-9090",
"UBUNTU-CVE-2014-9322"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.