Vulnerabilities

CVE-2014-3153

by Fred · 07/06/2014

The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.

Date published : 2014-06-07

http://www.securityfocus.com/bid/67906

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e9c243a5a6de0be8e584c604d353412584b592f8

Similar

Tags: Cybersecurity Alert