Launchpad.net

CVE 2014-9322

arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.

Related bugs and status

CVE-2014-9322 (Candidate) is related to these bugs:

Bug #1403855: CVE-2014-9322

		In	Importance	Status
1403855	CVE-2014-9322	linux (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-fsl-imx51 (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-mvl-dove (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu)	Undecided	New
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu)	Undecided	New
1403855	CVE-2014-9322	linux-ti-omap4 (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-ec2 (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-ec2 (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-fsl-imx51 (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu Vivid)	Undecided	New
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu Vivid)	Undecided	New
1403855	CVE-2014-9322	linux-mvl-dove (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-ti-omap4 (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu Utopic)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu Utopic)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux (Ubuntu Trusty)	High	Fix Released
1403855	CVE-2014-9322	linux-ec2 (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-fsl-imx51 (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu Trusty)	Undecided	New
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu Trusty)	Undecided	New
1403855	CVE-2014-9322	linux-mvl-dove (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-ti-omap4 (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux (Ubuntu Precise)	High	Fix Released
1403855	CVE-2014-9322	linux-ec2 (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-fsl-imx51 (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu Precise)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu Precise)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux-mvl-dove (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-ti-omap4 (Ubuntu Precise)	High	Fix Released
1403855	CVE-2014-9322	linux-lts-backport-maverick (Ubuntu Lucid)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux-lts-backport-natty (Ubuntu Lucid)	Undecided	Won't Fix
1403855	CVE-2014-9322	linux-lts-trusty (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-trusty (Ubuntu Precise)	High	Fix Released
1403855	CVE-2014-9322	linux-lts-trusty (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-lts-trusty (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-armadaxp (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-armadaxp (Ubuntu Precise)	High	Fix Released
1403855	CVE-2014-9322	linux-armadaxp (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-armadaxp (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-utopic (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-utopic (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-lts-utopic (Ubuntu Trusty)	High	Fix Released
1403855	CVE-2014-9322	linux-lts-utopic (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-saucy (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-saucy (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-lts-saucy (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-lts-saucy (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-quantal (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-quantal (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-lts-quantal (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-lts-quantal (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-lts-raring (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-lts-raring (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-lts-raring (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-lts-raring (Ubuntu Vivid)	High	Invalid
1403855	CVE-2014-9322	linux-goldfish (Ubuntu)	High	New
1403855	CVE-2014-9322	linux-goldfish (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-goldfish (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-goldfish (Ubuntu Vivid)	High	Won't Fix
1403855	CVE-2014-9322	linux-flo (Ubuntu)	High	New
1403855	CVE-2014-9322	linux-flo (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-flo (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-flo (Ubuntu Vivid)	High	Won't Fix
1403855	CVE-2014-9322	linux-mako (Ubuntu)	High	New
1403855	CVE-2014-9322	linux-mako (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-mako (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-mako (Ubuntu Vivid)	High	Won't Fix
1403855	CVE-2014-9322	linux-manta (Ubuntu)	High	Invalid
1403855	CVE-2014-9322	linux-manta (Ubuntu Precise)	High	Invalid
1403855	CVE-2014-9322	linux-manta (Ubuntu Trusty)	High	Invalid
1403855	CVE-2014-9322	linux-manta (Ubuntu Vivid)	High	Won't Fix
1403855	CVE-2014-9322	linux (Ubuntu Wily)	High	Invalid
1403855	CVE-2014-9322	linux-armadaxp (Ubuntu Wily)	High	Invalid
1403855	CVE-2014-9322	linux-ec2 (Ubuntu Wily)	High	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-9322

Related bugs and status

Related bugs

References