Back to search
CVE-2014-2678
Published: Apr 1, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel through 3.14 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a bind system call for an RDS socket on a system that lacks RDS transports.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
60471
third-party-advisory
x_refsource_SECUNIA
66543
vdb-entry
x_refsource_BID
http://linux.oracle.com/errata/ELSA-2014-0926.html
x_refsource_CONFIRM
[linux-kernel] 20140329 [PATCH v2] rds: prevent dereference of a NULL device in rds_iw_laddr_check
mailing-list
x_refsource_MLIST
http://linux.oracle.com/errata/ELSA-2014-0926-1.html
x_refsource_CONFIRM
[oss-security] 20140331 CVE-2013-7348 CVE-2014-2678 Linux kernel aio and rds issues
mailing-list
x_refsource_MLIST
59386
third-party-advisory
x_refsource_SECUNIA
60130
third-party-advisory
x_refsource_SECUNIA
FEDORA-2014-4844
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now