Your submission was sent successfully! Close

CVE-2014-4157

Published: 23 June 2014

arch/mips/include/asm/thread_info.h in the Linux kernel before 3.14.8 on the MIPS platform does not configure _TIF_SECCOMP checks on the fast system-call path, which allows local users to bypass intended PR_SET_SECCOMP restrictions by executing a crafted application without invoking a trace or audit subsystem.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(MIPS specific)
Patches:
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by 137f7df8cead00688524c82360930845396b8a21
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

This package is not directly supported by the Ubuntu Security Team
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-flo
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-goldfish
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-grouper
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-lts-raring
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-lts-saucy
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-lts-trusty
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-maguro
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-mako
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-manta
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)
linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (3.15~rc1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Notes

AuthorNote
jdstrand
android kernels (goldfish, grouper, maguro, mako and manta) are not
supported on the Ubuntu Touch 13.10 preview kernels
android kernels (flo, goldfish, grouper, maguro, mako and manta) are
not supported on the Ubuntu Touch 14.04 preview kernels
mdeslaur
probably not affected since MIPS specific...need to check

References

Bugs