CVE-2014-3917
Published: 05 June 2014
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.
From the Ubuntu security team
An flaw was discovered in the Linux kernel's audit subsystem when auditing certain syscalls. A local attacker could exploit this flaw to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS).
Priority
High
Status
| Package | Release | Status |
|---|---|---|
|
linux Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.2.0-16.19)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Released
(3.13.0-33.58)
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Released
(3.2.0-68.102)
|
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by a3c54931199565930d6d84f4c3456f6440aefd41 |
||
|
linux-armadaxp Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was released [3.2.0-1637.54])
|
|
| This package is not directly supported by the Ubuntu Security Team | ||
|
linux-aws Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.4.0-1001.10)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Not vulnerable
(4.4.0-1002.2)
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-ec2 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-flo Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(3.4.0-5.22)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-fsl-imx51 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-gke Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.4.0-1003.3)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-goldfish Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(3.4.0-4.27)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-grouper Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [abandoned])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-hwe Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.8.0-36.36~16.04.1)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-hwe-edge Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.8.0-36.36~16.04.1)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-linaro-omap Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was ignored [abandoned])
|
|
|
linux-linaro-shared Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was ignored [abandoned])
|
|
|
linux-linaro-vexpress Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was ignored [abandoned])
|
|
|
linux-lts-quantal Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was released [3.5.0-54.81~precise1])
|
|
|
Patches: DNE |
||
|
linux-lts-raring Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was released [3.8.0-44.66~precise1])
|
|
|
linux-lts-saucy Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was released [3.11.0-26.45~precise1])
|
|
|
linux-lts-trusty Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Released
(3.13.0-33.58~precise1)
|
|
|
linux-lts-utopic Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was not-affected [3.16.0-25.33~14.04.2])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-lts-vivid Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was not-affected [3.19.0-18.18~14.04.1])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-lts-wily Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was not-affected [4.2.0-18.22~14.04.1])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-lts-xenial Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Not vulnerable
(4.4.0-13.29~14.04.1)
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-maguro Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [abandoned])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-mako Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(3.4.0-7.40)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-manta Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-mvl-dove Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-qcm-msm Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was ignored [abandoned])
|
|
|
linux-raspi2 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.2.0-1013.19)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-snapdragon Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Not vulnerable
(4.4.0-1012.12)
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
|
|
|
linux-ti-omap4 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.16~rc1)
|
| Ubuntu 16.04 LTS (Xenial Xerus) |
Does not exist
|
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| Ubuntu 12.04 ESM (Precise Pangolin) |
Does not exist
(precise was released [3.2.0-1452.72])
|
|
Notes
| Author | Note |
|---|---|
| jdstrand | android kernels (goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 13.10 preview kernels android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.04 preview kernels |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3917
- http://article.gmane.org/gmane.linux.kernel/1713179
- https://usn.ubuntu.com/usn/usn-2281-1
- https://usn.ubuntu.com/usn/usn-2282-1
- https://usn.ubuntu.com/usn/usn-2285-1
- https://usn.ubuntu.com/usn/usn-2286-1
- https://usn.ubuntu.com/usn/usn-2287-1
- https://usn.ubuntu.com/usn/usn-2289-1
- https://usn.ubuntu.com/usn/usn-2314-1
- https://usn.ubuntu.com/usn/usn-2313-1
- https://usn.ubuntu.com/usn/usn-2334-1
- https://usn.ubuntu.com/usn/usn-2335-1
- NVD
- Launchpad
- Debian