CVE-2014-0196 - CERT CVE
ID CVE-2014-0196
Sažetak The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings.
Reference
CVSS
Base: 6.9
Impact: 10.0
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE COMPLETE
CVSS vektor AV:L/AC:M/Au:N/C:C/I:C/A:C
Zadnje važnije ažuriranje 09-02-2024 - 19:24
Objavljeno 07-05-2014 - 10:55