CVE-2014-0069
Published: 28 February 2014
The cifs_iovec_write function in fs/cifs/file.c in the Linux kernel through 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes, which allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory corruption and system crash), or possibly gain privileges via a writev system call with a crafted pointer.
From the Ubuntu security team
Al Viro discovered an error in how CIFS in the Linux kernel handles uncached write operations. An unprivileged local user could exploit this flaw to cause a denial of service (system crash), obtain sensitive information from kernel memory, or possibly gain privileges.
Priority
Status
Package | Release | Status |
---|---|---|
linux Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-armadaxp Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-aws Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-ec2 Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-flo Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-fsl-imx51 Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-gke Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-goldfish Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-grouper Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-hwe Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-linaro-omap Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-linaro-shared Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-linaro-vexpress Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-quantal Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-raring Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-saucy Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-trusty Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-utopic Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-vivid Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-wily Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-maguro Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-mako Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-manta Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-mvl-dove Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-qcm-msm Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-raspi2 Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-snapdragon Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
linux-ti-omap4 Launchpad, Ubuntu, Debian |
upstream |
Released
(3.14~rc4)
|
Notes
Author | Note |
---|---|
jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels |
seth-arnold | fix not yet in Linus's tree as of 2014-02-20 |
apw | it seems the first fix is the CVE fix and will be: 5d81de8e8667da7135d3a32a964087c0faf5483f the second patch is a nice to have for future issues patch: http://article.gmane.org/gmane.linux.kernel.cifs/9401 (fixes bug) patch: http://article.gmane.org/gmane.linux.kernel.cifs/9402 (hardening) |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0069
- http://article.gmane.org/gmane.linux.kernel.cifs/9401
- http://article.gmane.org/gmane.linux.kernel.cifs/9402
- https://ubuntu.com/security/notices/USN-2175-1
- https://ubuntu.com/security/notices/USN-2176-1
- https://ubuntu.com/security/notices/USN-2177-1
- https://ubuntu.com/security/notices/USN-2178-1
- https://ubuntu.com/security/notices/USN-2179-1
- https://ubuntu.com/security/notices/USN-2180-1
- https://ubuntu.com/security/notices/USN-2181-1
- https://ubuntu.com/security/notices/USN-2221-1
- https://ubuntu.com/security/notices/USN-2227-1
- NVD
- Launchpad
- Debian