MGASA-2014-0063

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2014-0063.html

Import Source

https://advisories.mageia.org/MGASA-2014-0063.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2014-0063

Related

CVE-2014-0038

Published

2014-02-12T22:48:23Z

Modified

2014-02-12T22:48:18Z

Summary

Updated kernel-rt packages fix security vulnerability

Details

This kernel update provides an update to 3.12.9 and fixes the following critical security issue:

Pageexec reported a bug in the Linux kernel's recvmmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrator privileges (CVE-2014-0038)

The -rt patch has been updated to -rt13.

For other changes, see the referenced changelog

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:4 / kernel-rt

Package

Name: kernel-rt
Purl: pkg:rpm/mageia/kernel-rt?distro=mageia-4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.12.9-0.rt13.1.mga4

Ecosystem specific

{
    "section": "core"
}