CVE-2014-3917

Updated: 2024-07-12

CWE: Information Leak / Disclosure

Description:

kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service (OOPS) via a large value of a syscall number.

CVSS3:


Vendor State

OS Vendor version Errata
RHEL 6 2.6.32-431.29.2.el6 RHSA-2014:1167
RHEL 7 3.10.0-123.8.1.el7 RHSA-2014:1281
Ubuntu 14.04 3.13.0-33.58 USN-2314-1
Ubuntu 14.04 ESM 3.13.0-33.58 USN-2314-1
CentOS 7 3.10.0-123.8.1.el7 CESA-2014:1281
CentOS 6 2.6.32-431.29.2.el6 CESA-2014:1167
CentOS 7 plus 3.10.0-123.8.1.el7.centos.plus CESA-2014:1281
CentOS 6 plus 2.6.32-431.29.2.el6.centos.plus CESA-2014:1167
Oracle Linux 6 2.6.32-431.29.2.el6 ELSA-2014-1167
Oracle Linux 7 3.10.0-123.8.1.el7 ELSA-2014-1281
Scientific 6 2.6.32-431.29.2.el6 CESA-2014:1167

KernelCare State

OS Original kernel version State
RHEL 6
2.6.32-358.6.2.el6 show all hide all
2.6.32-279.11.1.el6 2.6.32-279.14.1.el6 2.6.32-279.19.1.el6 2.6.32-279.2.1.el6 2.6.32-279.22.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-279.9.1.el6 2.6.32-358.0.1.el6 2.6.32-358.11.1.el6 2.6.32-358.14.1.el6 2.6.32-358.18.1.el6 2.6.32-358.2.1.el6 2.6.32-358.23.2.el6 2.6.32-358.6.1.el6 2.6.32-358.el6 2.6.32-431.1.2.el6 2.6.32-431.11.2.el6 2.6.32-431.17.1.el6 2.6.32-431.20.3.el6 2.6.32-431.20.5.el6 2.6.32-431.23.3.el6 2.6.32-431.3.1.el6 2.6.32-431.5.1.el6 2.6.32-431.el6
Released
RHEL 7
3.10.0-123.6.3.el7 show all hide all
3.10.0-123.4.2.el7 3.10.0-123.1.2.el7 3.10.0-123.el7 3.10.0-123.4.4.el7
Released
Ubuntu 14.04
3.13.0-32.57
Released
Ubuntu 14.04 ESM
Ready For Release
CentOS 7
3.10.0-123.el7 show all hide all
3.10.0-123.1.2.el7 3.10.0-123.4.2.el7 3.10.0-123.6.3.el7 3.10.0-123.4.4.el7
Released
CentOS 6
2.6.32-279.14.1.el6 show all hide all
2.6.32-358.2.1.el6 2.6.32-358.23.2.el6 2.6.32-358.0.1.el6 2.6.32-431.11.2.el6 2.6.32-431.el6 2.6.32-358.6.2.el6 2.6.32-358.6.1.el6 2.6.32-358.14.1.el6 2.6.32-279.9.1.el6 2.6.32-279.11.1.el6 2.6.32-358.11.1.el6 2.6.32-431.23.3.el6 2.6.32-431.5.1.el6 2.6.32-431.20.5.el6 2.6.32-279.22.1.el6 2.6.32-431.20.3.el6 2.6.32-358.el6 2.6.32-279.2.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.1.2.0.1.el6 2.6.32-431.3.1.el6 2.6.32-431.17.1.el6 2.6.32-358.18.1.el6 2.6.32-279.19.1.el6
Released
CentOS 7 plus
3.10.0-123.6.3.el7.centos.plus show all hide all
3.10.0-123.4.4.el7.centos.plus 3.10.0-123.el7.centos.plus 3.10.0-123.1.2.el7.centos.plus 3.10.0-123.4.2.el7.centos.plus
Released
CentOS 6 plus
2.6.32-431.1.2.el6.centos.plus show all hide all
2.6.32-431.5.1.el6.centos.plus 2.6.32-358.0.1.el6.centos.plus 2.6.32-431.20.3.el6.centos.plus 2.6.32-279.19.1.el6.centos.plus 2.6.32-431.17.1.el6.centos.plus 2.6.32-431.11.2.el6.centos.plus 2.6.32-358.6.1.el6.centos.plus 2.6.32-358.14.1.el6.centos.plus 2.6.32-431.el6.centos.plus 2.6.32-431.20.5.el6.centos.plus 2.6.32-279.9.1.el6.centos.plus 2.6.32-358.23.2.el6.centos.plus 2.6.32-279.11.1.el6.centos.plus 2.6.32-279.22.1.el6.centos.plus 2.6.32-358.2.1.el6.centos.plus 2.6.32-431.23.3.el6.centos.plus 2.6.32-279.2.1.el6.centos.plus 2.6.32-279.5.1.el6.centos.plus 2.6.32-279.5.2.el6.centos.plus 2.6.32-431.20.3.0.1.el6.centos.plus 2.6.32-431.3.1.el6.centos.plus 2.6.32-358.6.2.el6.centos.plus 2.6.32-358.11.1.el6.centos.plus 2.6.32-358.el6.centos.plus 2.6.32-279.14.1.el6.centos.plus 2.6.32-358.18.1.el6.centos.plus
Released
Oracle Linux 6
2.6.32-358.14.1.el6 show all hide all
2.6.32-358.11.1.el6 2.6.32-358.0.1.el6 2.6.32-431.20.5.el6 2.6.32-431.1.2.el6 2.6.32-431.el6 2.6.32-358.6.2.el6 2.6.32-358.2.1.el6 2.6.32-279.19.1.el6 2.6.32-358.6.1.el6 2.6.32-279.11.1.el6 2.6.32-431.17.1.el6 2.6.32-431.23.3.el6 2.6.32-431.11.2.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.3.1.el6 2.6.32-279.2.1.el6 2.6.32-358.23.2.el6 2.6.32-279.9.1.el6 2.6.32-279.22.1.el6 2.6.32-358.el6 2.6.32-431.20.3.el6 2.6.32-358.18.1.el6 2.6.32-431.5.1.el6 2.6.32-279.14.1.el6
Released
Oracle Linux 7
3.10.0-123.4.4.el7 show all hide all
3.10.0-123.6.3.el7 3.10.0-123.4.2.el7 3.10.0-123.el7 3.10.0-123.1.2.el7
Released
CloudLinux OS 7
3.10.0-233.1.2.lve1.3.33.4.el7 show all hide all
3.10.0-223.1.2.lve1.3.22.el7 3.10.0-223.1.2.lve1.3.33.3.el7 3.10.0-223.1.2.lve1.3.33.el7 3.10.0-233.1.2.lve1.3.33.1.el7
Released
CloudLinux OS 6
2.6.32-379.22.1.lve1.2.17.1.el6 show all hide all
2.6.32-379.22.1.lve1.2.17.el6 2.6.32-458.18.1.lve1.2.39.el6 2.6.32-458.23.2.lve1.2.45.el6 2.6.32-458.23.2.lve1.2.48.el6 2.6.32-458.23.2.lve1.2.52.el6 2.6.32-458.6.2.lve1.2.26.1.el6 2.6.32-458.6.2.lve1.2.28.el6 2.6.32-458.6.2.lve1.2.30.el6 2.6.32-531.1.2.lve1.2.54.el6 2.6.32-531.11.2.lve1.2.55.el6 2.6.32-531.17.1.lve1.2.56.el6 2.6.32-531.17.1.lve1.2.57.el6 2.6.32-531.17.1.lve1.2.58.el6 2.6.32-531.17.1.lve1.2.60.el6 2.6.32-531.23.3.lve1.2.65.el6 2.6.32-531.23.3.lve1.2.66.el6 2.6.32-531.23.3.lve1.3.6.el6
Released
OpenVZ 6
2.6.32-042stab076.7 show all hide all
2.6.32-042stab076.8 2.6.32-042stab078.22 2.6.32-042stab078.26 2.6.32-042stab078.27 2.6.32-042stab078.28 2.6.32-042stab079.4 2.6.32-042stab079.5 2.6.32-042stab079.6 2.6.32-042stab081.3 2.6.32-042stab081.5 2.6.32-042stab081.8 2.6.32-042stab083.2 2.6.32-042stab084.12 2.6.32-042stab084.14 2.6.32-042stab084.17 2.6.32-042stab084.20 2.6.32-042stab084.21 2.6.32-042stab084.25 2.6.32-042stab084.26 2.6.32-042stab085.17 2.6.32-042stab085.20 2.6.32-042stab088.4 2.6.32-042stab090.2 2.6.32-042stab090.3 2.6.32-042stab090.4 2.6.32-042stab090.5 2.6.32-042stab092.1 2.6.32-042stab092.2 2.6.32-042stab092.3 2.6.32-042stab093.4
Released
Scientific 6
2.6.32-358.2.1.el6 show all hide all
2.6.32-431.20.3.el6 2.6.32-358.23.2.el6 2.6.32-358.18.1.el6 2.6.32-431.1.2.el6 2.6.32-431.20.5.el6 2.6.32-431.11.2.el6 2.6.32-279.14.1.el6 2.6.32-431.el6 2.6.32-279.2.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.3.1.el6 2.6.32-279.22.1.el6 2.6.32-358.11.1.el6 2.6.32-358.6.2.el6 2.6.32-279.19.1.el6 2.6.32-431.23.3.el6 2.6.32-431.5.1.el6 2.6.32-279.9.1.el6 2.6.32-431.17.1.el6 2.6.32-358.14.1.el6 2.6.32-279.11.1.el6 2.6.32-358.el6 2.6.32-358.0.1.el6 2.6.32-358.6.1.el6
Released
OEL 6 Dell
Ready For Release
OEL 7 Dell
Ready For Release
Endurance 7 eig 3.10
Ready For Release
Debian 10 cloud
Will Not Fix
Debian 9 backports
Will Not Fix